Downloading Files uploaded by http-upload fails on self signed certificate even though httpupload_verify is Deactivated
Versions
- OS: Windows 8.1
- GTK+ Version: 3.22.28
- PyGObject Version: 3.26.1
- python-nbxmpp Version: 0.6.4
- Gajim Version: 1.0.0
- XMPP Server: EjabberD 18.03
Downloading Files uploaded by http-upload fails on self signed certificate even though httpupload_verify is Deactivated, this however works with Url Image Preview Plugin when disabling HTTPS verification (obviuosly for images only).
Furthermore, the certificate in question is added to the system's trusted root certification authority, yet Gajim doesn't trust.
Steps to reproduce the problem
- Connect to your Intranet Server that uses a self signed certificate.
- Deactivate httpupload_verify in advanced configuration so you can upload files with http-upload.
- Use OMEMO Encryption (If you don't it will be a normal https link and the browser will handle downloading it, but the file won't be encrypted :/).
- upload a file using http-upload.
- click on the link to download the file.
Expected behavior
Either:
1- Gajim should trust the certificates trusted by the system.
or:
2- When httpupload_verify is Deactivated, Gajim should stop Verifying HTTPS on both upload and download, Just like Url Image Preview Plugin.
or even better:
3- Just like connecting to an account on an XMPP server with a signed certificate, http-upload should present the user with the certificate details and ask the user if he wants to trust it or not, save the certificate as trusted if the user trusted it.
Actual behavior
When Downloading The File with the case above an error message presented to the user saying:
[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed (_ssl.c:777)
and the file doesn't get downloaded.