This change makes the app accept trusted CA certificates (manually installed by the user) so users with a gerrit instance where the https Certificate ist signed by a custom/company CA no longer have to tick "Trust all server certificates" when the CA certificate is installed as a trusted CA.
jruesga
commented
5 years ago
In recent Android Versions apps no longer trust certificates installed by the user unless the app explicitly declares to trust the "user" truststore as well. https://developer.android.com/training/articles/security-config#base-config
This change makes the app accept trusted CA certificates (manually installed by the user) so users with a gerrit instance where the https Certificate ist signed by a custom/company CA no longer have to tick "Trust all server certificates" when the CA certificate is installed as a trusted CA.