We're calling on all EU-based Mozillians with iOS or iPadOS devices to help us monitor Apple’s new browser choice screens. Join the effort to hold Big Tech to account!

Funkcionalnosć toś togo sedła se pśez wótwardowańske źěła wobgranicujo, kótarež maju wašo dožywjenje pólěpšyś. Jolic nastawk waš problem njerozwězujo a cośo pšašanje stajiś, wobrośćo se na našo zgromoźeństwo pomocy, kótarež na to caka, wam na @FirefoxSupport na Twitter a /r/firefox na Reddit pomagaś.

Avatar for Username

Pomoc pśepytaś

Glědajśo se wobšudy pomocy. Njenapominajomy was nigda, telefonowy numer zawołaś, SMS pósłaś abo wósobinske informacije pśeraźiś. Pšosym dajśo suspektnu aktiwitu z pomocu nastajenja „Znjewužywanje k wěsći daś“ k wěsći.

Dalšne informacije

Toś ta nitka jo se archiwěrowała. Pšosym stajśo nowe pšašanje, joli trjebaśo pomoc.

How can we force firefox to check its trusted certificate store on every request?

  • 2 wótegronje
  • 1 ma toś ten problem
  • 2 naglěda
  • Slědne wótegrono wót thready

thready
thready
more options

We have an application on localhost that gets installed from our page. We happen to be running over HTTPS. We wrote code in our installed application to add the certificate to firefox's trusted store. The page that provides the installer for this app then autodetects that it's installed by making HTTPS requests to it. Only, it doesn't work in Firefox since Firefox needs to be restarted so that it reads its trusted store.

Is there any way for us to make firefox read its store again and not rely on a cached result?

Thanks! Mike

We have an application on localhost that gets installed from our page. We happen to be running over HTTPS. We wrote code in our installed application to add the certificate to firefox's trusted store. The page that provides the installer for this app then autodetects that it's installed by making HTTPS requests to it. Only, it doesn't work in Firefox since Firefox needs to be restarted so that it reads its trusted store. Is there any way for us to make firefox read its store again and not rely on a cached result? Thanks! Mike

Wšykne wótegrona (2)

guigs
guigs
more options

Hi, I asked on the #security channel about this and they said the work around for this is to add the certificate through the Firefox Certificate Menu in the Preferences/Options menu under Security.

However they are also interested in what makes it difficult for you to use a certificate from a CA that Firefox trusts by default? As this is something we are looking to improve on. I have asked them to follow this thread for your feedback.

Thank you and we are looking forward to your post!

Wót guigs změnjony

thready
thready Pšašaŕ
more options

Thanks for your response. We dropped this approach and went with a plugin instead. Basically we just need to communicate to localhost for the "richer thick client experience", but ran into the issue of mixing https as origin with http to localhost being blocked by the browser (personally I think mixing should be ok for localhost calls but I'm not a security expert).

Kind regards, Mike