0

I have a SOAP request to make through HTTPS which requires a self-signed certificate. I have it in the format of .p12 or .cer

Do I do

  1. Certificate pinning in my source code (using https://github.com/silkimen/cordova-plugin-advanced-http)
  2. Configure own SSL Context (Java HTTPS client certificate authentication)
  3. Sign the APK file with the certificate

I am not sure the difference 1 and 2 achieves. Anybody can help explain?

Huiting
  • 1,368
  • 7
  • 24

1 Answers1

0

You can make use of this plugin:

https://www.npmjs.com/package/cordova-client-cert-authentication

Usually when accessing the server through browser, there will be a popup asking for the certificate.

This plugin achieves that and when you run your request, the popup will be triggered. But user will have to install the cert on their mobile phones.

This method will not require any additional coding on your part.

Gene
  • 2,178
  • 3
  • 30
  • 50