Crypto: randomUUID() is only available in a secure context

eclipse-syson / syson

SysON: web-based graphical modelers for SysMLv2. Please visit https://mbse-syson.org and contact Obeo https://www.obeosoft.com/en/contact for more details!

https://mbse-syson.org

Eclipse Public License 2.0

86 stars 21 forks source link

Crypto: randomUUID() is only available in a secure context #562

Closed pwretmo closed 1 month ago

pwretmo commented 1 month ago

The frontend app makes use of the Crypto: randomUUID() method from the Web Crypto API. That method is only available in secure contexts. Hence the application only works when using HTTPS or when running on localhost (which is also a secure context). In non-secure contexts, the web app fails with Uncaught TypeError: crypto.randomUUID is not a function and the browser does not render any content.

The tool looks very promising! Great work!

AxelRICHARD commented 1 month ago

Thank you! Yes you're right, the application only works when using HTTPS or when running on localhost (which is also a secure context). In the recently recently released documentation, a section is dedicated to this subject. Please see: https://doc.mbse-syson.org/syson/main/installation-guide/how-tos/https.html (Note that our solution is for tests purpose only, if you need a production-secure environment you will need a SSL or TLS certificate).