SSL Client Authentication on BlackBerry? - blackberry

Is there any way to perform SSL Client(Mutual) Authentication on a BlackBerry phone? the closest thing I have found is the TLS10Connection/SSL30Connection, but I havent found any way to set any options to do anything, let alone pass it a certificate and use client authentication.
Since BlackBerry (as far as I know) does not have JNI I cant compile openssl and use it...maybe there is a Java ssl library I could include in my BlackBerry project but I dont know of one.
Anyone have any thoughts?
Thanks

Related

How can I develop/debug the Office 365 Rest Api Notifications NotificationURL?

After testing and research it seems the NotificationURL parameter requires a fully valid SSL certificate or the subscribe call fails.
I am wondering if there is a way I have not found or a clever workaround to use the Office 365 Notifications with a self-signed SSL certificate installed on the NotificationURL during development?
Thanks!
Steve
I won't mark this as answered yet in case there is a better way, but here is my work around for the issue.
I created a small webapi project that takes a base64 encoded url as a parameter, ie: https://site.azurewebsites.com/Notify/aHR0cDovL3NvbWVob3N0OjEyMzQ1L05vdGlmeQ==
It proxies the request to that encoded URL and plays back the response.
I hosted this "proxy" as a free azure website making use of the SSL provided and can now subscribe to notifications via my proxy.
It works well enough and means I can work from anywhere.
I'll see if better ideas come along, but if not will accept this as the answer as it seems to work for my development purposes.
Steve
I've used Ngrok. The free version is sufficient to debug WebHooks

Recording issue in fiddler of iOS native application with https

I want to record web requests using fiddler of an iOS7 native app which using https protocol (with trusted certificates) to communicate with server. I could able to record the requests and after Https decryption option disabled and its worked fine. When Https decryption option enabled app shows invalid/untrusted certifificate alert and cannot proceed even after installing fiddler certificate in iOS.
Question is,
Is there any way to record Https request/response of iOS7 app using fiddler by imitating any other certificate as trusted certificate or anyother way to do that? any suggestions? any other tools? I got another solution from here but it was not worked.
Thanks in advance
You need to use the Fiddler Certificate Maker add-on to generate certificates that iOS is willing to trust.
See http://blogs.telerik.com/fiddler/posts/12-12-21/using-fiddler-with-apple-ios-devices for more information.
Also keep in mind that some iOS applications (like the AppStore) use a technique called "Certificate Pinning" which means that you cannot decrypt their traffic seamlessly unless you jailbreak the device.

Rails, QBOE, qbXML and integrating them all together

I am currently developing a Ruby/Rails app that will be used in-house as a sort of Enterprise application to support our business.
Our company uses Quickbooks Online to do almost all of our accounting, most importantly for invoicing.
I am looking for a way to automatically generate invoices from our Rails app into Quickbooks, as well as be able to pull customer balances and some other "basic" information into the Rails app to display on a customer information screen.
I have done a lot of research on the topic, and have yet to find an acceptable solution to what we're trying to accomplish.
Quickbooks Web Connector - Not applicable since are not running Quickbooks Pro
Intuit Anywhere app - The app we are using is certainly not a SaaS App, as it is specifically designed for our business, and the only Quickbooks file/account it will ever see is our own
Quickbooks Online/qbXML Gateway application - This seems to be the best fit
So I have spent considerable time with Keith Palmer's Consolibytes wiki, and Intuit's Official Documentation (which is great to get started, but doesn't really provide much help for the details), and have been unable to even link my application to quickbooks using the https://qbo.intuit.com/redir/addsdkapp?appid=YOUR-ID-HERE&appreferer=&appdata=1 link.
My server does have a GoDaddy generated SSL certificate, and I have visited the connection callback URL and have confirmed that everything is in working order there. However, I keep getting a "Failed to notify third party application about this connection" error. There is no evidence of a request from QB to my server in any of my logs.
So what I'm getting at here is this:
Is what I'm trying to do possible and/or practical?
Am I going the right way about it?
I'd really love to find someone out there who has done something like this before and maybe shed some light on the whole process.
Thanks!
So what I'm getting at here is this: Is what I'm trying to do possible and/or practical?
Yes.
Am I going the right way about it?
Almost. :-)
From what you posted:
My server does have a GoDaddy generated SSL certificate, and I have visited the connection callback URL and have confirmed that everything is in working order there.
It sounds like you registered in HOSTED mode.
Unfortunately, the Intuit servers don't consider GoDaddy certificates valid, and thus won't be able to HTTP POST your connection ticket to those servers. That's why you're seeing this:
Failed to notify third party application about this connection
Additionally, I believe they do reverse DNS checks, which will most likely fail because GoDaddy generally doesn't set up rDNS entries.
The solution is:
Do not register in HOSTED mode
Instead, register in DESKTOP mode.
Once you've registered, use this URL to register get your connection ticket:
https://login.quickbooks.com/j/qbn/sdkapp/confirm?appid=YOUR-APPLICATION-ID-HERE&serviceid=2004&appdata=1
(make sure to plug your actual application ID into the URL)
Instead of Intuit HTTP POSTing the connection ticket to you, the connection ticket will be displayed and you can copy/paste it. From there on in, it's as simple as HTTP POSTing additional HTTP requests to Intuit's servers.
Sample XML requests can be found on our QuickBooks integration wiki - make sure you use the DESKTOP mode examples.
Hope that helps clear things up!

Native way to read smart card from browser without an applet

I'm developing a Rails app, and in some moment the users will need to use a smart card for authenticating into the app. I know how to implement this using a Java applet, but I was wondering if there exists a native way of doing this using the browser and avoid using an applet. Any ideas?
Thanks in advance!
The only option to interact with a client device (like a smart card) using the browser is to use a separate container, such as Java applets, Flash, Silverlight or native browser extensions.
If you use SSL client certificate authentication (which is the best option when considering smart cards for webapp authentication, anyway) you can rely on the built-in support in browsers, given that you have proper drivers present for your card(s) on client machines.

Blackberry ignore ssl certificate

My Blackberry application is connecting to a web server via HTTPS.
However, The SSL certificate of the server is invalid.
I would like to know how to ignore the ssl error on my Blackberry application?
I knew with Android you could overwirte the onReceivedSslError method of Android's api to over come this problem. I don't know if there is some way to do it on Blackberry.
Thanks in advance!
I know of several BlackBerry developers who have expressed concerns over this issue.
While the user can adjust her device security settings to not be notified of SSL certificate issues, there doesn't seem to be a way of doing this programmatically from either inside your application through API, nor through some sort of declaration in the application's .jad file.
Based on the documentation here http://www.blackberry.com/developers/docs/7.1.0api/javax/microedition/io/Connector.html#tls, I just add ";EndToEndDesired" to the connection string. And it works! :)

Resources