access_denied (49) - When access control was applied the certificate was rejected

Fuzion24 / JustTrustMe

An xposed module that disables SSL certificate checking for the purposes of auditing an app with cert pinning

Other

4.77k stars 782 forks source link

access_denied (49) - When access control was applied the certificate was rejected #68

Closed StupidRepo closed 9 months ago

StupidRepo commented 1 year ago

I've selected the app under the module in LSPosed, yet Charles is still telling me access_denied (49) - When access control was applied the certificate was rejected. I have the Charles certificates added. Why's it not working?

jpstotz commented 1 year ago

There are many possible causes:

The app performs certificate pinning in a way that is not detected by JustTrustMe (can happen when the app is heavily obfuscated or if custom code is used for pinning).
LSPosed only affects Java/Kotlin (thus DEX code) code. If the app does not make use of DEX based code for TLS connections and pinning, JustTrustMe will not have an effect on those connections.