User CA certificates not used/accepted by Android Element
ne20002 opened this issue · 4 comments
Steps to reproduce
I try to set up my own ntfy server within my home network. The TLS certificate of the ntfy server is signed by my own CA.
Even though the CA root certificate has been added to the phones settings (listed as user CA), the Element Android client refuses to connect to the ntfy server complaining about ntfy's server certificate.
As there is a seeting in Firefox for Android (secret settings) to enable use of user added CA certificates I assume this is missing in Element for Android.
To reproduce:
- Create a ntfy server with a certificate from your own CA
- Add CA root certificate to Android phone
- Set notifications method to ntfy
- Testing noftification setup gives SSL error.
Checking the notifications within settings in Element Android, all steps except 'push testing' are successful. 'push testing' fails with 'SSL error'.
Outcome
What did you expect?
A CA certificate added by a user to his/her phone shall be trusted. At least an option to enable this in Element Android would be welcome.
What happened instead?
Certificates of CAs added by the user are not accepted.
Your phone model
S10e
Operating system version
T
Application version and app store
No response
Homeserver
No response
Will you send logs?
No
Are you willing to provide a PR?
No
I'm having exact same problem. I have my own root certificate installed, which works fine for other apps, including element itself, but not for ntfy notifications specifically.
I ran the Troubleshoot Notifications and get all green ticks except Test Push gives SSL Error.