sailaja varma
Reputation: 31
your app is using unsafe implementation of hostname verifier
When I am uploading my app to playstore it shows the warning
"your app is using unsafe implementation of hostname verifier"
How to solve this problem.
SSLContext sc = SSLContext.getInstance("SSL"); sc.init(null, trustAllCerts, new SecureRandom());
HttpsURLConnection.setDefaultSSLSocketFactory(sc.getSocketFactory());
HttpsURLConnection.setDefaultHostnameVerifier(new HostnameVerifier() {
@Override public boolean verify(String arg0, SSLSession arg1) {
return true;
}
});
Upvotes: 1
Views: 835
Answers (1)
Kunu
Reputation: 5134
You are using an unsafe implementation of the HostnameVerifier interface here
HttpsURLConnection.setDefaultHostnameVerifier(new HostnameVerifier() {
@Override public boolean verify(String arg0, SSLSession arg1) {
return true;
}
});
Google is pretty strict about it these days. You can check this link for more information.
Instead of true always return false whenever the hostname of the server does not meet your expectations.
Instead use
@Override
public boolean verify(String arg0, SSLSession arg1) {
HostnameVerifier hv = HttpsURLConnection.getDefaultHostnameVerifier();
return hv.verify("your_domain.com", arg1);
}
Upvotes: 1
Related Questions
- Google Play Security Alert - Your app is using an unsafe implementation of the HostnameVerifier
- how to fix hostname verifier interface while uploading app to google play console
- Proper HostName Verifier in app according to Googe Play Store
- Google Play Alert- App using unsafe implementation of the hostnameVerifier
- Android : java.io.IOException: Hostname was not verified
- Google rejected app because of HostnameVerifier issue
- Google Play Warning: How to fix incorrect implementation of HostnameVerifier
- Google Play Warning: How to fix incorrect implementation of HostnameVerifier?
- Getting java.net.UnknownHostException when using HostName in android
- UnknownHostException is thrown in android app if hostname is used instead of IP address