[Webkit-unassigned] [Bug 140197] WKWebView needs API to accept invalid SSL certificates
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Tue Jan 13 13:35:55 PST 2015
https://bugs.webkit.org/show_bug.cgi?id=140197
--- Comment #11 from Stuart Morgan <stuartmorgan at chromium.org> ---
(In reply to comment #10)
> I am not an expert, but I believe that is not the case, at least for some
> authentication challenges. For example, for HTTP basic authentication, the
> user agent makes the request normally, with cookies, and only then receives
> the 401 status code, which creates the authentication challenge.
We're wondering specifically for certs, now that this callback serves as a cert trust evaluation point in ToT; depending on when this is called the change may make it possible for us to implement things like blacklisting known bad certs (before cookie interception can occur), or we may need to file a separate request for that.
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20150113/b140d19d/attachment-0002.html>
More information about the webkit-unassigned
mailing list