bitmask for android should pin some prooviders ca's cert fingerprint
Hi
While testing a way to work with the api on port 443, i was surprised that it worked fine with the bitmask android application while it failed in the linux version. Checking the android's source i was unable to find (grepping) the riseup's ca cert fingerprint which is used to corroborate that you are really talking with riseup's leap provider. Is it using another way to check it's validity or is not using it? If it's not validating the authenticity of the provider, can we get that feature?
Thanks!
(from redmine: created on 2015-04-16, closed on 2015-04-22)
- Relations:
- parent #7050