ir2pid
Reputation: 6166
Bypass certificate pinning for development builds with network-security-config.xml?
We want to bypass SSL for certain flavours of app which is used internally. What is the best way to do it?
Can we configure the network-security-config.xml so it ignores pinning for a particular build flavour?
Or we have to override the TrustManager class?
Upvotes: 0
Views: 622
Answers (1)
laalto
Reputation: 152917
I have been using gradle source sets for this kind of purpose.
debug source set has a network security config that does not have pinning enabled.
release source set has a different network security config file that has everything needed for a production configuration.
In a gradle module, these source sets sit on the top src level, with main being the default.
Upvotes: 1
Related Questions
- Disable SSL certificate check in retrofit library
- Android SSL certificate pinning with retrofit
- Certificate Pinning not working when trust user certificates in network security configuration
- OkHttp Certificate pinning Error or default behavior?
- Default Network Security Configuration behaviour in Android
- Android - Certificate Pinning with Retrofit 2.3 and OkHTTP
- Certificate Pinning fails even with CA-signed cert
- Retrofit with OKHTTP3 certification pinning
- How to bypass android SSL Certificate check with Retrofit 2.0
- Certificate pinning not working with OkHttp on Android