I would like to use Xibo client to display information on tenniscourt reservations of our local club. For this we have the ability to call URL https://www.tennisvlaanderen.be/terreinreservatie. The requirement is that a certificate is installed to actually show content of the URL which works fine in Firefox, chrome, IE on the device I installed Xibo client application on.
How can I ensure XIBO Client is aware of the installed certificate and actually uses it so content of HTML page is displayed? Currently is just shows me a blank page.
If this is actually an HTTPS client certificate, I don’t think that’s something we test so it may not work. Certainly I get a client certificate error trying to visit that URL.
If importing the certificate on Android or Windows doesn’t work, then I’m not sure what else you could try.
Yes, after reading my post once more I realized it might have been somewhat unclear.
Let me start over again:
I have XIBO CMS server 1.8.2 running in Docker
I have Xibo Android client in Trail on a spare Nexus 5 device
I have installed the certificate as described in the link your provided
I can confirm install of certificate is OK because opening up the link in chrome browser on the Nexus device opens up the URL correctly.
I then start up Xibo client app that will alternate between a facebook feed and displaying the URL in question.
Problem:
In chrome the link works but in the Xibo client app the link does not as if the Xibo client app does not find/use the certificate.
Right that’s clearer, but we know that for a standard HTTPS certificate (where you’re using self-signed certificates for example), importing the certificate there does work.
In this case though, the certificate you’re importing is a client certificate correct? ie it authenticates the client to the server, rather than the normal usecase of authenticating the server to the client.
Just some additinal findings. I have noticed that calling the URL on the client device in chrome (which then shows me the content correctky) will always ask me to select the correct client certificate. Maybe, just maybe, the problem is related to the fact that somehow the ACCEPT/ALLOW button needs to be clicked and Xibo client app does not have a proper dialog to request this on screen?
Do you know if there is an option to enforce the certificate to be selected without having to do the actual select dialog manual action?
I see you’re using a client certificate to authenticate, you’re not talking about self-signed server SSL certificates. The problem is that Android doesn’t allow just any app to use a client certificate, each app has to have it’s own certificate store.
You will need to recompile the Android client and the app would have to contain a certificate store and have stored the certificates in there in order to build the HTTP connection to the server. Although the work is trivial, sadly Xibo for Android is not open source so you can’t just go and include a certificate store.
Either way, client certificate authentication is hardly used in the real world, I would suggest authenticating using a different method. The easiest way around it would be to build a proxy that authenticates with the client certificate to the server and allow your clients to connect. You can even do this on the client by building a simple proxy app for Android.