Context Navigation

ODKCollect

Timestamp:: 01/02/15 20:55:53 (10 years ago)
Author:: Dominic König
Comment:: --

Legend:

: Unmodified
: Added
: Removed
: Modified

DeveloperGuidelines/Mobile/Android/ODKCollect

-              v3
+              v4
 To achieve (a):
 ) Create a new CA key
+. Create a new CA key
 {{{
 openssl genrsa -des3 -out rootCA.key 2048
 }}}
 ) Create a self-signed CA root certificate
+. Create a self-signed CA root certificate
 {{{
 openssl req -x509 -new -nodes -key rootCA.key -days 365 -out rootCA.crt
 }}}
 ) Create a server key (if you don't have one yet)
+. Create a server key (if you don't have one yet)
 {{{
 openssl genrsa -out host.key 2048
 }}}
 ) Generate a CSR with the server key (if you don't have one yet)
+. Generate a CSR with the server key (if you don't have one yet)
 {{{
 openssl req -new -key host.key -out host.csr
 }}}
 ) Sign the CSR with the rootCA key
+. Sign the CSR with the rootCA key
 {{{
 openssl x509 -req -in host.csr -CA rootCA.crt -CAkey rootCA.key -CAcreateserial -out host.crt -days 365
 }}}
 ) Use rootCA.crt, host.key and host.crt the SSL config in your vhost (paths may differ depending on your OS):
+. Use rootCA.crt, host.key and host.crt the SSL config in your vhost (paths may differ depending on your OS):
 {{{
   SSLEngine On
 …
 To achieve (b):
 ) Convert the certificate into DER format:
+. Convert the certificate into DER format:
 {{{
 openssl x509 -in rootCA.crt -outform der -out rootCA.der.crt
 }}}
 ) Publish the rootCA.der.crt on your web server
 ) Open the certificate's URL in Chrome, install it as "user trusted certificate" as described above
 ) Verify that the certificate is installed under Settings > Security > Trusted Certificates > User
+. Publish the rootCA.der.crt on your web server
+. Open the certificate's URL in Chrome, install it as "user trusted certificate" as described above
+. Verify that the certificate is installed under Settings > Security > Trusted Certificates > User
 == Problem: Invalid Response Status for HEAD Request ==