From e280f585cf093ae10174a1ac74c68e3fb2ccaedb Mon Sep 17 00:00:00 2001 From: Farzad E Date: Sun, 2 Dec 2018 05:56:16 -0800 Subject: [PATCH] Honor user CA store when targeting Android Nougat SDK and later (#420) * Included network-security-config.xml file to honor user added CAs (see: https://android-developers.googleblog.com/2016/07/changes-to-trusted-certificate.html) * Added domain-config entry to only use system CAs connecting to bitwarden.com * Deny all plaintext traffic from network_security_config Ref: https://developer.android.com/training/articles/security-config#CleartextTrafficPermitted --- src/Android/Android.csproj | 3 +++ src/Android/Properties/AndroidManifest.xml | 3 ++- src/Android/Resources/Resource.Designer.cs | 3 +++ .../Resources/xml/network_security_config.xml | 18 ++++++++++++++++++ 4 files changed, 26 insertions(+), 1 deletion(-) create mode 100644 src/Android/Resources/xml/network_security_config.xml diff --git a/src/Android/Android.csproj b/src/Android/Android.csproj index cd0a8c554..102bba5c4 100644 --- a/src/Android/Android.csproj +++ b/src/Android/Android.csproj @@ -1021,5 +1021,8 @@ + + + \ No newline at end of file diff --git a/src/Android/Properties/AndroidManifest.xml b/src/Android/Properties/AndroidManifest.xml index 85255f5a8..c8c94d4ad 100644 --- a/src/Android/Properties/AndroidManifest.xml +++ b/src/Android/Properties/AndroidManifest.xml @@ -13,7 +13,8 @@ + android:icon="@mipmap/ic_launcher" android:roundIcon="@mipmap/ic_launcher_round" + android:networkSecurityConfig="@xml/network_security_config"> + + + + + + + + + + bitwarden.com + + + + + + \ No newline at end of file