qzind / qz-print

Archive for legacy qz-print versions (1.8, 1.9). See https://github.com/qzind/tray for modern versions.
Other
141 stars 101 forks source link

Are secure websockets possible? #19

Closed tresf closed 9 years ago

tresf commented 9 years ago

So I'm growing increasingly concerned with the feasibility of secure websockets

The current obstacles:

tresf commented 9 years ago

Generating a self-signed CA certificate that works with Firefox

This was fixed by turning off the CA flag in the certificate so that Jetty acts as an Endpoint Entity. The reason this works is when the GUI isn't being used to import the cert, non-CA certs can be added to the Firefox Trusted CA Root Store.

Import the CA certificate into Firefox

This is tackled via two new files: ant/firefox/firefox-config.cfg.in and ant/firefox/firefox-prefs.js.in which are copied into the Program Files\Mozilla Firefox\ directory and used as a deployment rule which is run each time Firefox is launched.