Kai Engert wrote: > Pawel P wrote: >> I want to overwrite default mozilla 1.9 behavior in https flow. >> I want to be informed about certificates (especially bad). >> I'll show my own "certificate dialogs" to user and user will decide >> if accept certificate or not. >> >> In mozilla 1.8 I used nsIBadCertListener interface to do above. >> In mozilla 1.9... there is no such interface. There is >> nsIBadCertListener2, but it exports only one method that inform about >> certificate problem. >> No matter what will happen in this method ssl connection will be broken. >> >> Is there any way to change default https flow in new mozilla? >> > > Hi Pawel, > > what you see is exactly by design. > > We no longer support show-error-and-continue, because experience has > shown: Users will say simply OK to whatever dialog is presented. > > A certificate error will cause the connection to stop. > > The only workaround we offer at the embedding level is the use of > nsICertOverrideService. > > If you really must allow connections to servers with bad certificates, > you should require your users to go through a configuration for that > server. You could look at how this got implemented in Firefox > (Add-Exception-Dialog). > > Kai >
Hi Kai, thanks for the explanation. Currently I'm trying to use default dialogs, but I have problem with "Add exception dialog" - it doesn't show up. If there is something wrong with certificate, the "Secure Connection Failed" dialog shows up. It has two buttons: "Get me out of here!" and "Add exception...", but this buttons do nothing. Have any idea what is going on? May be there is something wrong with prefs... I dont know... _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
