WebDAV connection fails #167
Comments
|
I assume we're talking about SharePoint WebDav (from what I saw on twitter). Thanks for reporting it here. Unfortunately we got no feedback from our beta-testers Some questions:
If you like, you could come over to our Gitter Lobby so that we could have a more direct conversation. |
. Which makes it a bit troublesome for you now.
|
Yes, it's SharePoint WebDAV.
I pasted the WebDAV link to Safari and was connected as expected. Also, switching back to version 1.6.1 worked properly. |
|
I've had the same issue as well; I haven't been able to run any of the
TestFlight betas against my WebDAV setup.
On Tue, Jan 31, 2017 at 4:25 AM Stefan Hagen ***@***.***> wrote:
Hello,
I have the same issue with version 1.7.1 on iOS. I'm connecting to a
webdav server provided by Seafile
<https://manual.seafile.com/extension/webdav.html>.
The connection is done via SSL and a self signed certificate.
I have created a test account for you HERE
<https://gist.github.com/xkpd3/0c4a9f2be3d028376d1e11b7de5cdfd2>, so you
can play around with it.
Best Regards,
Stefan
—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub
<#167 (comment)>,
or mute the thread
<https://github.com/notifications/unsubscribe-auth/ACqLQK3S7bHLUIrj9R8-11YhCl830twBks5rXv3pgaJpZM4LyXBC>
.
--
Peter Sahlstrom
[email protected]
http://peter.stormlash.net
|
|
@xkpd3 thank you for the test-setup The error is related to the self signed certificate. We did not have tested that. Are you aware of Let's Encrypt? @exilsteira, just to make sure. The server you're connecting to uses also self signed certificates? |
|
Would it be an acceptable workaround to use an officially signed certificate or http-only for the time being? Beside of Let's Encrypt there is also StartSSL who offers a free certificate. Maybe others but I only know those two. Updated Known Issues. |
|
The server is http:// and can only be accessed within the company network or VPN. I'm pretty sure that VPN uses a self signed certificate. |
|
@mgmart: I'm aware of letsencrypt and I will change certificates in about a week, because I've hit the certificate request limit for this domain while testing and writing the renewal script. Good to know that this issue is due to the certificate. |
|
@mgmart: This was indeed the issue. I replaced the certificate with one from Symantec and it works fine now. |
|
@exilsteira I would then presume that your error has an other reason. MobileOrg is not aware of the VPN connection and we're talking about a plain http:// connection in your case. |
|
@xkpd3 Good to know. Thanks again for the test-setup, that made it very easy to track it down. |
|
@exilsteira Thanks for reporting here. We're going to work on getting a fix for the issue with self-signed certs. If you'd be able to assist with testing it I can add you to TestFlight, just send me your apple id. |
|
In Requirements for Connecting Using ATS Apple states that the trust-chain of a certificate must be evaluated.
Which means that self-signed certificates do only work with the root CA installed on the device. |
|
@exilsteira WebDAV is not supported over http, only https Regardless wether the connection is by VPN or not. |
|
Why does it work with v1.6.1 over http and not with v1.7.1? |
|
@exilsteira Apple made changes related to
|
|
Guys, thank you very much for your help. I guess I'm going to have a hard time with our IT to find a way for enabling data exchange. Regards, |
authentication challenge logic was not handled correctly http redirection still not handled error handling was missing in new webdavtransfermanager
|
@exilsteira, it's always an good idea to secure any services. Also services which are only accessed from the inside. Maybe this helps: http://www.cio.de/a/die-groesste-gefahr-kommt-von-innen,2921119 |
|
As it's an ATS error only better documentation => MobileOrg/mobileorg.github.io#14 and clearer error messages => #171 could be provided. |
|
I followed this guide for setting up a root CA, then installed the root CA on my iPhone and trusted it, but I'm still getting an ATS error. Any advice? |
|
Apple introduced some new ATS features in iOS 11. Best is to use a CA-issued certificate. For self-signed certificates the domain must be configured in |
|
I realized this thread is already closed but I couldn't find the relevant info elsewhere. I am iOs 14 and would like to sync with webdav through my Synology NAS. It used to work earlier but I keep getting this error when I try to sync "ATS Error A secure connection could not be established. Please make sure that you're using a secure connection with valid certificates". I have no idea how to get the certificates. Is there some documentation I can refer to for setting up the webdav sync with Synology? |
Connecting to my company's WebDAV server failed. The error message was "Failure" while downloading checksums.dat. After removing all files from my server the error remained.
I then tried version 1.6.1 which did the job. The connection to the server was established via VPN in both cases.
The text was updated successfully, but these errors were encountered: