Honor user CA store when targeting Android Nougat SDK and later (#420)

* Included network-security-config.xml file to honor user added CAs (see: https://android-developers.googleblog.com/2016/07/changes-to-trusted-certificate.html) * Added domain-config entry to only use system CAs connecting to bitwarden.com * Deny all plaintext traffic from network_security_config Ref: https://developer.android.com/training/articles/security-config#CleartextTrafficPermitted
2025-12-28 06:03:40 +00:00 · 2018-12-02 05:56:16 -08:00
parent 366578600b
commit e280f585cf
4 changed files with 26 additions and 1 deletions
--- a/src/Android/Properties/AndroidManifest.xml
+++ b/src/Android/Properties/AndroidManifest.xml
@@ -13,7 +13,8 @@
  <uses-feature android:name="android.hardware.camera.autofocus" android:required="false" />

  <application android:label="Bitwarden" android:theme="@style/BitwardenTheme" android:allowBackup="false"
-               android:icon="@mipmap/ic_launcher" android:roundIcon="@mipmap/ic_launcher_round">
+               android:icon="@mipmap/ic_launcher" android:roundIcon="@mipmap/ic_launcher_round"
+               android:networkSecurityConfig="@xml/network_security_config">
    <provider
        android:name="android.support.v4.content.FileProvider"
        android:authorities="com.x8bit.bitwarden.fileprovider"