Posts: 14,150
Threads: 323
Joined: Mar 2018
Reputation:
578
02-24-2025, 10:16 PM
(This post was last modified: 02-24-2025, 10:57 PM by Tim Curtis.
Edit Reason: Correction
)
@ the_bertrum, reading the thread again I'm still a fan of the CA:TRUE hack to the self signed cert template since the only downside is a one-time accept of a Browser warning :-) I think its more "user friendly" than installing a whole CA :-0
Code: basicConstraints = critical, CA:TRUE
Disregard above. PWA still works on IOS so no need to test. I suppose if one wanted to run https and had Mac or Windows then then hack should be tested.
Posts: 18
Threads: 4
Joined: Jan 2023
Reputation:
1
02-25-2025, 01:51 AM
(This post was last modified: 02-25-2025, 03:08 AM by Permi.)
(02-24-2025, 05:15 PM)the_bertrum Wrote: For the add to homescreen to work in Android, you need https enabled on moOde and the cert installed on your phone.
You can either use the automatic certificate generator built into moOde, or create your own CA for managing credentials on your home network (see my related post on doing that).
Either way, you also need to follow the instructions for adding the cert to your phone that are detailed in the document linked in this thread, or in the CA thread mentioned above.
It isn't simple I'm afraid, there are many steps. I found it rewarding though, and the "app" version is much nicer on a phone than inside the browser to my view.
I enabled ssl option in moode UI and download the automatic certificate , When I am trying to import in android it says private key is required to install cert. Not sure which step i am missing.
It seems those are linux commands. I am windows user. Can you please help if any windows related certificate instalation.
Posts: 2,027
Threads: 45
Joined: Mar 2020
Reputation:
96
(02-24-2025, 10:16 PM)Tim Curtis Wrote: @the_bertrum, reading the thread again I'm still a fan of the CA:TRUE hack to the self signed cert template since the only downside is a one-time accept of a Browser warning :-) I think its more "user friendly" than installing a whole CA :-0
Code: basicConstraints = critical, CA:TRUE
I'm not sure if it has any negative effect on IOS but I'll try to it at some point before the next moode release (or someone else can if interested). Even if it does there could be an option Android or IOS. Something like that.
Disregard above. PWA still works on IOS so no need to test. I suppose if one wanted to run https and had Mac or Windows then then hack should be tested.
I agree that it is the quickest way to getting a workable system that means the fewest moving parts for the user. I've some vague thoughts on how creating a CA could be added to the moOde UI with a few prompts, but I'm a way of sharing those thoughts, and it would involve a lot of coding I'm not sure I have the skill to do. Definitely go for the CA:True option, it will work for now (I predict some browsers will stop accepting such certs in the future though).
----------------
Robert
Posts: 2,027
Threads: 45
Joined: Mar 2020
Reputation:
96
(02-25-2025, 01:51 AM)Permi Wrote: (02-24-2025, 05:15 PM)the_bertrum Wrote: For the add to homescreen to work in Android, you need https enabled on moOde and the cert installed on your phone.
You can either use the automatic certificate generator built into moOde, or create your own CA for managing credentials on your home network (see my related post on doing that).
Either way, you also need to follow the instructions for adding the cert to your phone that are detailed in the document linked in this thread, or in the CA thread mentioned above.
It isn't simple I'm afraid, there are many steps. I found it rewarding though, and the "app" version is much nicer on a phone than inside the browser to my view.
I enabled ssl option in moode UI and download the automatic certificate , When I am trying to import in android it says private key is required to install cert. Not sure which step i am missing.
It seems those are linux commands. I am windows user. Can you please help if any windows related certificate instalation.
Sorry, yes I forgot about the private key thing. That's the whole reason this thread exists. You are going to need to do some Linux command line work here (or wait until Tim builds it in to a release, which may or may not be soon).
Have a look at the first post in this thread, you will need to do step 1 of that thread. That will require that you SSH into your moOde player (there's a Web SSH terminal available in the Security section on the System Config panel), navigate to the file mentioned and edit the contents as described. A bit of research on the internet will give you the Linux basics to navigate, and I'd recommend researching the "nano" editor for making the change.
Once you've done that and rebooted, download a fresh cert from moOde and import that into your phone. You'll be warned about the cert, but can accept the warning and all should be well.
----------------
Robert
Posts: 18
Threads: 4
Joined: Jan 2023
Reputation:
1
(02-25-2025, 08:05 AM)the_bertrum Wrote: (02-25-2025, 01:51 AM)Permi Wrote: (02-24-2025, 05:15 PM)the_bertrum Wrote: For the add to homescreen to work in Android, you need https enabled on moOde and the cert installed on your phone.
You can either use the automatic certificate generator built into moOde, or create your own CA for managing credentials on your home network (see my related post on doing that).
Either way, you also need to follow the instructions for adding the cert to your phone that are detailed in the document linked in this thread, or in the CA thread mentioned above.
It isn't simple I'm afraid, there are many steps. I found it rewarding though, and the "app" version is much nicer on a phone than inside the browser to my view.
I enabled ssl option in moode UI and download the automatic certificate , When I am trying to import in android it says private key is required to install cert. Not sure which step i am missing.
It seems those are linux commands. I am windows user. Can you please help if any windows related certificate instalation.
Sorry, yes I forgot about the private key thing. That's the whole reason this thread exists. You are going to need to do some Linux command line work here (or wait until Tim builds it in to a release, which may or may not be soon).
Have a look at the first post in this thread, you will need to do step 1 of that thread. That will require that you SSH into your moOde player (there's a Web SSH terminal available in the Security section on the System Config panel), navigate to the file mentioned and edit the contents as described. A bit of research on the internet will give you the Linux basics to navigate, and I'd recommend researching the "nano" editor for making the change.
Once you've done that and rebooted, download a fresh cert from moOde and import that into your phone. You'll be warned about the cert, but can accept the warning and all should be well.
Thanks for details documents, finally cert installed and able to install moode player as app.
Thanks agian.
Posts: 14,150
Threads: 323
Joined: Mar 2018
Reputation:
578
I did some testing on my Apple devices with CA:TRUE and no issues so far :-)
Here's the quick and dirty procedure for installing the Automatic (self-signed) cert into MacOS (Ventura 13.7) and IOS (18.3.1). The cert was downloaded into MacOS default Downloads folder.
Code: - MacOS:
- Double click the cert
- Auto-opens the Keychain Access app
- Install the cert into the System store (type logon password when prompted)
- Double click the installed cert
- Set it to "Always trust"
- IOS:
- First attach the cert to an email on another client and mail it to yourself
- Open the email on IOS
- Click the cert icon (not the download button) to download the "Profile"
- Open Settings>General>VPN and Device Management
- Under CONFIGURATON PROFILE, click and install the cert profile
- Open Settings>General>About>Certificate Trust Settings
- Click the slider to trust the cert
When I get some extra cycles I'll create documentation in the repo with screen shots to make it easier.
Posts: 14,150
Threads: 323
Joined: Mar 2018
Reputation:
578
(02-26-2025, 03:56 PM)Tim Curtis Wrote: I did some testing on my Apple devices with CA:TRUE and no issues so far :-)
Here's the quick and dirty procedure for installing the Automatic (self-signed) cert into MacOS (Ventura 13.7) and IOS (18.3.1). The cert was downloaded into MacOS default Downloads folder.
Code: - MacOS:
- Double click the cert
- Auto-opens the Keychain Access app
- Install the cert into the System store (type logon password when prompted)
- Double click the installed cert
- Set it to "Always trust"
- IOS:
- First attach the cert to an email on another client and mail it to yourself
- Open the email on IOS
- Click the cert icon (not the download button) to download the "Profile"
- Open Settings>General>VPN and Device Management
- Under CONFIGURATON PROFILE, click and install the cert profile
- Open Settings>General>About>Certificate Trust Settings
- Click the slider to trust the cert
When I get some extra cycles I'll create documentation in the repo with screen shots to make it easier.
Fixed a bug and cleaned up the notification message for the HTTPS mode option :-)
Posts: 2,027
Threads: 45
Joined: Mar 2020
Reputation:
96
02-27-2025, 08:15 AM
(This post was last modified: 02-27-2025, 10:44 AM by Tim Curtis.)
Today, I expect to receive my new (to me) laptop that will be beefy enough to run dual boot, which means I'll have unfettered access to a Windows 11 machine for testing. I'll clean up the cert installation instructions for Windows that I wrote (I suspect there's an easier way) and grab some screen shots on the way.
ETA: Are you happy with that document format for the instructions Tim, or would you prefer it some other way?
Do you mean this writeup? https://moodeaudio.org/forum/showthread.php?tid=7189
I looked at it again and I see that you already documented Windows and IOS. I have the MacOS procedure and the only thing left is Android which I can't find anywhere :-0
I use MD format and store the files in the docs repo. I'll put something together this week and post a link. I was going to use screen shots but in this case with 4 OS's (MacOS, IOS, Windows and Android) I'm leaning toward just documenting the steps with accurate terms for example on IOS its Settings > General > About > Certificate Trust Settings.
Also, presently PWA (Home Screen App) still works just fine on IOS without HTTPS so this document is really meant for Android users which are in much greater numbers anyway.
----------------
Robert
Posts: 14,150
Threads: 323
Joined: Mar 2018
Reputation:
578
02-27-2025, 11:18 AM
(This post was last modified: 02-27-2025, 11:29 AM by Tim Curtis.
Edit Reason: eta linux
)
Here's the latest WIP for the plain test setup guide
https://github.com/moode-player/moode/bl..._https.txt
I just need the ANDROID part :-)
ETA: And LINUX
Maybe it doesn't need to be an MD format.
Posts: 2,027
Threads: 45
Joined: Mar 2020
Reputation:
96
(02-27-2025, 11:18 AM)Tim Curtis Wrote: Here's the latest WIP for the plain test setup guide
https://github.com/moode-player/moode/bl..._https.txt
I just need the ANDROID part :-)
ETA: And LINUX
Maybe it doesn't need to be an MD format.
I'll dust off my github login and see if I can edit that in-situ. Also need to add the process for adding the cert to browsers which don't necessarily use the OS store.
----------------
Robert
|
