crreddys
commented
5 years ago In our use case we have 3 servers which I am verifying cert pinning. Here is the scenario let’s assume we are having man in the middle attack for server 2. When I am first checking the server 1, I get valid response back and all subsequent calls are cached and it always returns true irrespective of the server.
With this change, the calls won’t be cached anymore.
Created PR for this change.
NSURLConnection is caching even i disable the cache.
Created a fork and made changes and waiting for feedback. I am using NSURLSession instead of NSURLConnection.
https://github.com/crreddys/SSLCertificateChecker-PhoneGap-Plugin
@jacobweber @EddyVerbruggen can you guys take a look.