summaryrefslogtreecommitdiff
path: root/src/gmcerts.c
AgeCommit message (Collapse)Author
2021-11-21Site-specific Titan upload identityJaakko Keränen
The identity to be used for uploads is now in sitespec.ini, so it applies to an entire site root. This should match actual use cases better than having URL-specific identities. Also fixed an issue with native menus. Replacing the items with new ones was not implemented. IssueID #379
2021-11-09GmCerts: Allow trusting certificate regardless of domain nameJaakko Keränen
2021-07-27GmCerts: As a fallback, use Gemini identities for Titan URLsJaakko Keränen
Allows configuring Titan-specific identities.
2021-07-27GmCerts: Use Gemini identities for Titan URLsJaakko Keränen
The upload dialog needs to have some UI for displaying/selecting which identity is used for the upload.
2021-07-22GmCerts: Updating trust via CAsJaakko Keränen
2021-07-22Generated certificates should be self-issuedJaakko Keränen
RFC 5280 defines a self-signed CA certificate as also being self-issued, so to honor this definition we set the issuer and the subject to be fully equivalent. IssueID #316
2021-07-16Allow override for certificate expiryJaakko Keränen
The user is able to ignore certificate expiry and continue loading the page regardless. This adds a one hour exception to the expiration date.
2021-07-16Improved TOFU implementationJaakko Keränen
If a server sends a different certificate (checked by matching public key fingerprints), abort the connection at the TLS handshake stage. A new error page is shown explaining the situation. A button is provided for conveniently opening Page Information, where trust can be updated. The file format of "visited.txt" was updated, so it is now called "visited.2.txt". The new format includes server port numbers, and the fingerprints are calculated based on public keys. IssueID #308 IssueID #309 IssueID #310
2021-07-13GmCerts: Make the server port knownJaakko Keränen
2021-05-21Added identity exportingJaakko Keränen
Exporting an identity will display it in a new tab in PEM encoded format, where it can be saved or copied. IssueID #236
2021-05-20SidebarWidget: Highlight identities used on current domainJaakko Keränen
2021-05-20Improved Identity management via sidebarJaakko Keränen
Prevent redundant activations: the highest-level URL overrides the same identity being used on lower-level URLs. Changed the icons in the list and added the list of used URLs into the context menu as clickable items.
2021-05-07GmCerts: Avoid losing identity metadataJaakko Keränen
idents.lgr format has not been changed, so keep using the old version number in the file.
2021-03-26GmCerts: Relaxed domain verificationJaakko Keränen
Allow a certificate for a higher-level domain to be verified against any subdomains, i.e., implicitly assume every certificate uses wildcards. CA verification is still done separately, and OpenSSL does that strictly as before.
2021-03-14Punycode domains when setting trustJaakko Keränen
2021-03-07GmCerts: Fixed checking for expiration timeJaakko Keränen
2021-03-04Save identity usage changes immediatelyJaakko Keränen
2021-03-02Server certificates may also be verified by CAsJaakko Keränen
If the CA file/path are configured in preferences, trust CA verification over manual TOFU checks.
2021-01-18Renamed ".binary" filesJaakko Keränen
Use the .lgr extension for Lagrange binary files.
2021-01-04GmCerts: Importing an existing certificateJaakko Keränen
2020-12-02Show a banner warning about certificate issuesJaakko Keränen
2020-11-08Manually trusting a server certificateJaakko Keränen
2020-10-29CleanupJaakko Keränen
2020-10-20Added timestamps to serialized responsesJaakko Keränen
A new version of the binary serialization format that includes timestamps for GmResponse.
2020-09-10GmCerts: Creating the 'idents' directoryJaakko Keränen
2020-09-09GmCerts: Checking if an identity is in useJaakko Keränen
2020-09-09GmCerts: Certificate issuerJaakko Keränen
It makes sense for a self-signed certificate to be issued by the same entity who is the subject.
2020-09-08LookupWidget: Identities lookup and commandsJaakko Keränen
2020-09-07LookupWidget: Finding identitiesJaakko Keränen
2020-09-07GmCerts: Suspicious double garbage collectionJaakko Keränen
Something fishy going on here.
2020-08-29SidebarWidget: Identity use improvementsJaakko Keränen
2020-08-29GmCerts: Fixed certificate importJaakko Keränen
2020-08-28macOS: Revealing files of an identityJaakko Keränen
Finder is accessed via AppleScript.
2020-08-28Deleting identitiesJaakko Keränen
2020-08-28Creating identity containing a domainJaakko Keränen
2020-08-27GmCerts: Use a StringSet for identity URLsJaakko Keränen
2020-08-26SidebarWidget: Working on identity selectionJaakko Keränen
2020-08-24SidebarWidget: List identities as sidebar itemsJaakko Keränen
2020-08-24Updated for the_Foundation API changesJaakko Keränen
2020-08-24Initialize RegExpMatchesJaakko Keränen
2020-08-23Added an identity creation dialogJaakko Keränen
2020-08-23Cleanup: Use ".binary" for binary filesJaakko Keränen
2020-08-23GmCerts: Identity managementJaakko Keränen
Loading and creating client certificates.
2020-08-22Added BSD 2-clause license and copyright noticesJaakko Keränen
2020-08-03GmCerts: Thread safety; fixed notificationsJaakko Keränen
Must update the status before notifying.
2020-08-03Server certificate TOFUJaakko Keränen
2020-08-03Working on server certificatesJaakko Keränen