API doesn't properly verify the TLS fingerprint

Question

API doesn't properly verify the TLS fingerprint

Closed this issue 2 years ago · 3 comments

The API checks the fingerprint on a test request in the constructor, but doesn't check the fingerprint in the actual requests, so they are not protected. You should validate the fingerprint on every request.

Answer 1 · 2023-01-26T16:44:49.000Z

This Node.js library had the same issue, and this is how they fixed it: murka/outlinevpn-api@1b6cbfc

Answer 2 · 2023-01-27T20:21:01.000Z

I think this should do the job #11
Would you mind a quick review?

Answer 3 · 2023-02-22T16:30:58.000Z

Released in version 3.0.0