[TIMOB-25335] Certificate Pinning - Support multiple certificates for a URL
| GitHub Issue | n/a |
|---|---|
| Type | Improvement |
| Priority | None |
| Status | Closed |
| Resolution | Duplicate |
| Resolution Date | 2020-09-30T09:16:42.000+0000 |
| Affected Version/s | Release 6.2.1 |
| Fix Version/s | n/a |
| Components | n/a |
| Labels | n/a |
| Reporter | Ben Bahrenburg |
| Assignee | Unknown |
| Created | 2017-09-23T17:30:07.000+0000 |
| Updated | 2020-09-30T09:16:42.000+0000 |
Description
Often when using certificate pinning you will need to ship multiple certificates for the same URLs. This is done so that you can ship your new certificate before the old one expires.
To support this the below would need to be implemented.
securityManager = https.createX509CertificatePinningSecurityManager([
{
url: 'https://dashboard.appcelerator.com',
serverCertificate: 'dashboard.appcelerator.com-new.der'
},
{
url: 'https://dashboard.appcelerator.com',
serverCertificate: 'dashboard.appcelerator.com-old.der'
}
]);
Closing as a duplicate of MOD-2402 rather than moving this over to MOD