Https


#1

What's the behaviour if there's a certificate error of any kind with HTTPS on Windows and Mac using the URL class? Anyone know? 

cheers! J. 


#2

It'll be whatever the default OSX behaviour is, but I don't claim to know what that is!


#3

OSX behaviour with the latest OSX is mainly sensible … results as follows:

JUCE v4.2.3
Mac OSX 10.11.6
HTTPS Behaviour Testing
Expect: OK
https://badssl.com/
* OK, status code:200

---Expect: STRONG FAIL
https://self-signed.badssl.com/
2016-08-17 08:58:20.003 HttpsSecurityTesting[8984:1381150] NSURLSession/NSURLConnection HTTP load failed (kCFStreamErrorDomainSSL, -9813)
* FAIL, status code:0

---Expect: STRONG FAIL
https://untrusted-root.badssl.com/
2016-08-17 08:58:20.262 HttpsSecurityTesting[8984:1381150] NSURLSession/NSURLConnection HTTP load failed (kCFStreamErrorDomainSSL, -9813)
* FAIL, status code:0

---Expect: FAIL (expired cert)
https://expired.badssl.com/
2016-08-17 08:58:20.612 HttpsSecurityTesting[8984:1381150] NSURLSession/NSURLConnection HTTP load failed (kCFStreamErrorDomainSSL, -9814)
* FAIL, status code:0

---Expect: FAIL (rubbish cipher)
https://rc4.badssl.com/
2016-08-17 08:58:20.869 HttpsSecurityTesting[8984:1381150] CFNetwork SSLHandshake failed (-9824)
* OK, status code:200

---Expect: FAIL (rubbish security setting)
https://dh480.badssl.com/
2016-08-17 08:58:21.589 HttpsSecurityTesting[8984:1381150] CFNetwork SSLHandshake failed (-9824)
2016-08-17 08:58:21.818 HttpsSecurityTesting[8984:1381150] CFNetwork SSLHandshake failed (-9824)
2016-08-17 08:58:22.046 HttpsSecurityTesting[8984:1381150] CFNetwork SSLHandshake failed (-9824)
2016-08-17 08:58:22.273 HttpsSecurityTesting[8984:1381150] CFNetwork SSLHandshake failed (-9824)
2016-08-17 08:58:22.274 HttpsSecurityTesting[8984:1381150] NSURLSession/NSURLConnection HTTP load failed (kCFStreamErrorDomainSSL, -9824)
* FAIL, status code:0