Use a different security policy for validating certificates against CAs #1072
Conversation
The policy that was used for showing information about certificate validity didn't validate domains Closes ChatSecure#1071
|
In several days I will make another PR that will make certificate pinning optional. |
|
@mimi89999 Thank you! I will take some time to test this and try to get a new release out shortly. I have been considering making cert pinning optional for a long time. As long as it's toggled on a per-account basis, and that the default behavior for accounts migrated from older versions is the same (e.g. keep legacy accounts pinned by default), your next PR should be good to merge. |
|
I was considering making certificate pinning a global setting as it is in Conversations and other applications. Why should it be per account? |
|
My thoughts were that different accounts may have different security requirements. You might not be as concerned about a certificate change on a lower risk account than another one used for more sensitive communications. |
No description provided.