source.rar
Reputation: 8090
OkHttp PublicKey pinning on Android
Does anyone know how we could implement Public Key pinning with OkHttp3
Have been reading about SSL pinning and I see that we could do it with either Certificate Pinning or Public Key pinning (the latter seems more flexible). But I was only able to find example of Certificate pinning with OkHttp and none of Key Pinning.
Does anyone know how easy this is to implement with OkHttp (and/or an example of how to go about doing so)?
TIA
Upvotes: 5
Views: 2056
Answers (1)
source.rar
Reputation: 8090
Been looking through the source of the CertificatePinner in OkHttp3 and it seems that the implementation is actually a Public Key check so is in fact an implementation of Public Key Pinning (hence adding this as an answer).
Please correct me if I'm wrong?
Upvotes: 4
Related Questions
- Certificate Pinning in OkHttp vs Android Network Security Config
- OkHttp Certificate pinning Error or default behavior?
- Is there any ways how to prevent SSL Pinning Bypass by using OkHttp3?
- OkHttp for Android: Option to NOT enforce Certificate/ public key pinning
- OkHttp with Certificate Pinning
- Android - Certificate Pinning with Retrofit 2.3 and OkHTTP
- SSL Pinning using Google Volley
- How can I pin a certificate with Square OKHTTP?
- Retrofit with OKHTTP3 certification pinning
- Certificate pinning not working with OkHttp on Android