manish-kukreja / ksoap2-android

Automatically exported from code.google.com/p/ksoap2-android
0 stars 0 forks source link

HTTPS SOAP webservice connection #134

Closed GoogleCodeExporter closed 9 years ago

GoogleCodeExporter commented 9 years ago
What steps will reproduce the problem?
1. Trying to connect to a HTTPS SOAP webservice (like 
https://195.1.61.153/awsh/service.svc) and allow an app to use secure 
connection through HttpsTransportSE instead of HttpTransportSE.

What is the expected output? What do you see instead?
Expected output is allowing app to connect to it. We are getting the issue 
hostname not verified

What version of the product are you using? On what operating system?
Any product and any Android OS

Please provide any additional information below.
As a workaround, I'm accepting all certificates, but it is not ok as the final 
solution

Original issue reported on code.google.com by angelu25@gmail.com on 14 Sep 2012 at 11:14

GoogleCodeExporter commented 9 years ago
Any idea about how to solve it?

Original comment by angelu25@gmail.com on 17 Oct 2012 at 3:24

GoogleCodeExporter commented 9 years ago
How is the server setup in terms of https? are you using a self signed 
certificate or a proper one? 

Original comment by mosa...@gmail.com on 18 Oct 2012 at 4:23

GoogleCodeExporter commented 9 years ago
A self signed certificate (find attached)

Original comment by angelu25@gmail.com on 18 Oct 2012 at 6:26

Attachments:

GoogleCodeExporter commented 9 years ago
For a self signed certificate I believe you have to follow the approach Bob is 
suggesting here 
http://blog.crazybob.org/2010/02/android-trusting-ssl-certificates.html

It essentially not related to ksoap2 but rather to the ssl stack of android 
itself.. 

Original comment by mosa...@gmail.com on 18 Oct 2012 at 6:33

GoogleCodeExporter commented 9 years ago
But, is there any possibility to do in a General way? I mean, I'm using my own 
self-signed certificate, but I would like to consider any server with any 
self-signed certificate o signed certificate (by CA authority).

Original comment by angelu25@gmail.com on 18 Oct 2012 at 6:38