@bazar
Are you sure the flutter app connects to the same port 443?
I don't see any related issues at: Issues · flutter/flutter · GitHub
3 Likes
Definitely.
2 Likes
@bazar
Then the (client) app definitely must bring along it's own way to connect (dlls, etc.)
Which are incompatible with the cert being served.
Other than the Flutter client app, do any other Androids connect to that same point (https://api.simlr.net/)?
3 Likes
Nope, only the Flutter app.
2 Likes
Great.
Let's make them all work!
Please show the web vhost config file for: api.simlr.net:443
3 Likes
532 posts were merged into an existing topic: Help thread for DST Root CA X3 expiration (September 2021)
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.
Hello everyone!
If I understand correctly, Android >= 2.3.6 should still work thanks to cross-sign? But my Flutter app cannot connect on Android versions prior 7.1.1 since Sep. 30. Says that certificate has expired.
Lots of messages there, but still unclear what can be done on the server to continue support old (but newer than 2.3.6) Android clients. I'm running an Ubuntu server with certbot. I already told users to update Android, but this option is not always available. It should be possible to solve this issue server-side.
2 Likes
How was the Flutter app TLS enabled?
Which certbot files does it now use?
3 Likes
The app uses dart HttpClient class.
The docs say that HTTPS will work automatically if the server's certificate is signed by a root CA (certificate authority) on the default list of well-known trusted CAs, compiled by Mozilla. Is it the case?
I didn't understant your second question about certbot files. Could you elaborate?
2 Likes
Well that likely depends on which version of Mozilla trusted root store you are using.
If it is relatively new, then I suppose, yes.
Which ACME client are you using to get certs?
Which of those files does Flutter use to encrypt with?
2 Likes
I use certbot on the server.
Flutter app does not have any special files, it just connects over HTTPS automatically.
2 Likes
That's literally IMPOSSIBLE.
Where there any instructions?
Like: "do this" and then it just works automatically.
3 Likes
No. Why impossible? When you open an https link with your web browser, you don't set up configuration files for each new site. It just opens. The app connects automatically just like that. What am I missing here?
2 Likes
It has to use a certificate to encrypt.
Automatic HTTPS (without giving it any cert files) is IMPOSSIBLE.
So which files does it use to encrypt with?
3 Likes
Again, when user opens any HTTPS page in a web browser, he does not manually provide certificate files, it works automatically for him.
And I did not provide certificate files for the mobile app to connect.
2 Likes
OMG!
Flutter is a CLIENT app - NOT a SERVER app.
Well that explains it!
4 Likes
Yes, the server runs on Ubuntu; the client is a Flutter app on Android.
2 Likes
Yes, I manage both the server and the client app.
2 Likes