Full blown TLS/SSL for WebSend in ESL32? #19724
-
Hi all, I understand why TLS/SSL is hardly possible for a chip with the limitations of the ESP8266 - or only in a limited way with manually installed certificates. Now, when searching for TLS here, I find only references in combination with MQTT. Is "fluu blown" TLS on ESP32 already useable for WebSend etc.? My devices would have to get or send data via https and it would be fantastic if either the complete TLS trust chain could be checked or else if one could add just the certificate authorities we'd need most - I guess that would be letsencrypt.. If there be not enough flash memory to host all the certs it would be nice to at least offer that option if a SDcard is present (which is true fpr all my projects). Andreas |
Beta Was this translation helpful? Give feedback.
Replies: 3 comments
-
There is no plan for certificate validation with https. It's a can of worms to do it right. Currently any certificate is accepted when doing an https request |
Beta Was this translation helpful? Give feedback.
-
Well that's already something, thanks! To put only Letsencrypt's CA in the device, would that be a smaller can? :) |
Beta Was this translation helpful? Give feedback.
-
Feel free to do :-) |
Beta Was this translation helpful? Give feedback.
There is no plan for certificate validation with https. It's a can of worms to do it right. Currently any certificate is accepted when doing an https request