HTTP with client certificate authentication

cRz_7 · March 30, 2017, 2:36pm

Hello,
Did anyone already implement a HTTP request with certificate based authentication?
When I open the URL of my backend service with Chrome browser on my mobile phone, it is asking for client certificate, which is fine. When I open the URL in my Ionic 2 app, there is just “ERROR EMPTY RESPONSE”. Does anyone know how to handle this? Thanks

dredondo · April 4, 2017, 2:14pm

Hi if you are using ionic-native http plugin:

this.http.validateDomainName(false)      
this.http.acceptAllCerts(true)

and set right the white list in config.xml and Content-Security-Policy in index.html

or If you are using http angular2

use this plugin
https://github.com/hypery2k/cordova-certificate-plugin

manually you can set info.list and set “NSAppTransportSecurity” key

cRz_7 · April 4, 2017, 3:39pm

Hello dredondo,

I don’t think you understood correctly. I am talking about client-certificate authentication to a web application, not SSL topic. The user has to authenticate himself via a authentication certificate (digital signature).

eskir · March 27, 2018, 8:28am

Have you ever figured out a way to fix this? I’m facing the same problem right now. I do have the user certificate installed on my test device and I can access my webservice on my Desktop PC by installing said certificate in chrome/firefox. Is there perhaps a similar option in ionic as “Automatically Select Certificate” found in Firefox? At the moment I just get Connection Refused.

cRz_7 · March 27, 2018, 8:43am

Hello eskir,

Unfortunately not. I tried it with a plugin but it was not working

eskir · March 27, 2018, 8:47am

I’m currently playing around with the “cordova-client-cert-authentication” and “cordova-plugin-client-certificate” plugins. Especially the first one claims it’ll make it work just like the certificate selection on chrome, it doesn’t seem like it’s working quite yet (besides the fact that now --livereload results in my app closing because it can’t connect to the local ionic server) but I’ll post again if I get any results.

eskir · March 27, 2018, 9:14am

Alright, not sure if this will help but I got it working:

I’ve installed both mentioned plugins and when I connect to my webservice, I now get a OS-level query on which client certificate to use. It’s weird though, I can no longer use my proxy configured in ionic.config.json (I configured this to avoid CORS errors on connecting to my webservice when I was testing in Chrome using IonicLab) - deployed on an android device, it just seems to work now which is really weird.

Edit:
Yeah, running on ionic serve --lab now no longer works because firefox and chrome are blocking CORS requests. The android WebView doesn’t seem to have any problems with this though. Strange.

Topic		Replies	Views
Automatic Client Certificate selection with Android ionic-v3	0	305	January 4, 2024
Cordova-plugin-advanced-http not working with certificate Ionic Native	1	3869	September 13, 2019
Https connection with self signed certificate ionic-v1	12	22970	March 28, 2017
Ionic can't make https request calls Ionic Framework	1	157	April 9, 2024
"TLS connection could not be established: javax.net.ssl.SSLHandshakeException: java.security.cert.CertPathValidatorException: Trust anchor for certification path not found." Ionic Angular	7	10188	December 5, 2022

HTTP with client certificate authentication

Related Topics