Login

**Tim Curtis** · 02-27-2025, 12:43 PM

(02-27-2025, 11:51 AM)the_bertrum Wrote:
(02-27-2025, 11:18 AM)Tim Curtis Wrote: Here's the latest WIP for the plain test setup guide
https://github.com/moode-player/moode/bl..._https.txt

I just need the ANDROID part :-)

ETA: And LINUX

Maybe it doesn't need to be an MD format.

I'll dust off my github login and see if I can edit that in-situ. Also need to add the process for adding the cert to browsers which don't necessarily use the OS store.

I think you have to be an admin in the repo to edit the file directly. It might be easier to just post the text here for the given section and I'll just add it :-)

I didn't quite understand the part about (some) Browsers not honoring the OS level cert? That seems pretty crazy to me since all the global root CA's are in the OS store.

Another thing is that the self-signed cert download is in .cer format. I think this is universal and will be accepted by all OS's but if not then I can look into also downloading in .pem or whatever.

**TheOldPresbyope** · 02-27-2025, 01:17 PM

(02-27-2025, 11:51 AM)the_bertrum Wrote:
(02-27-2025, 11:18 AM)Tim Curtis Wrote: Here's the latest WIP for the plain test setup guide
https://github.com/moode-player/moode/bl..._https.txt

I just need the ANDROID part :-)

ETA: And LINUX

Maybe it doesn't need to be an MD format.

I'll dust off my github login and see if I can edit that in-situ. Also need to add the process for adding the cert to browsers which don't necessarily use the OS store.

Good on you two. I’d love to help but I’m tied up in several must-do activities ATM.

I imagine we’ll need a new subforum just for user support of this Rolleyes

Btw, maybe on lines 7, 8, and 178 of the write-up we start using the HTTPS url for the moOdeAudio site?

Regards,
Kent

**Tim Curtis** · 02-27-2025, 03:08 PM

(02-27-2025, 01:17 PM)TheOldPresbyope Wrote:
(02-27-2025, 11:51 AM)the_bertrum Wrote:
(02-27-2025, 11:18 AM)Tim Curtis Wrote: Here's the latest WIP for the plain test setup guide
https://github.com/moode-player/moode/bl..._https.txt

I just need the ANDROID part :-)

ETA: And LINUX

Maybe it doesn't need to be an MD format.

I'll dust off my github login and see if I can edit that in-situ. Also need to add the process for adding the cert to browsers which don't necessarily use the OS store.

Good on you two. I’d love to help but I’m tied up in several must-do activities ATM.

I imagine we’ll need a new subforum just for user support of this

Btw, maybe on lines 7, 8, and 178 of the write-up we start using the HTTPS url for the moOdeAudio site?

Regards,
Kent

Edits made to those lines, commit pushed.

I don't think we need a dedicated sub-forum because the feature is mostly only going to be used to do a Home Screen app on Android and thats just a matter of following some steps. A permanent move for Browsers only operating over HTTPS is prolly somewhere in the future but maybe beyond the end of the moode project.

**Tim Curtis** · 02-28-2025, 11:00 AM

I completely missed this writeup from @the_bertrum
https://drive.google.com/file/d/1069Onjc...rbDGw/view

the_bertrum · 03-02-2025, 12:17 PM

(02-28-2025, 11:00 AM)Tim Curtis Wrote: I completely missed this writeup from @the_bertrum
https://drive.google.com/file/d/1069Onjc...rbDGw/view

I've been a bit snowed under of late, so I've lost track of where we are with this now. Does the guide have all you need in it already? I think all that was not certain in there was MacOS which you've now provided.
Also need to have the sections on adding to browsers that don't trust the system wide certificate stores.

**Tim Curtis** · 03-02-2025, 01:49 PM

(03-02-2025, 12:17 PM)the_bertrum Wrote:
(02-28-2025, 11:00 AM)Tim Curtis Wrote: I completely missed this writeup from @the_bertrum
https://drive.google.com/file/d/1069Onjc...rbDGw/view

I've been a bit snowed under of late, so I've lost track of where we are with this now. Does the guide have all you need in it already? I think all that was not certain in there was MacOS which you've now provided.
Also need to have the sections on adding to browsers that don't trust the system wide certificate stores.

Yes that had the missing info.

Here's the latest commit
https://github.com/moode-player/moode/bl..._https.txt

the_bertrum · 03-02-2025, 04:02 PM

Brilliant, that's all nice and clear to me. Maybe needs someone who didn't spend weeks up to his neck in the stuff to prove it properly though.

**TheOldPresbyope**

First, a quibble. The manual generation of a ca-certificate is mentioned but the procedure isn't spelled out. Should there be some sort of "out of scope of this document" statement as I recall one of Robert's documents saying?

Second, for my Google Pixel 6a phone (Android 15), the steps described fall down at the point in step 7 where I select the ca-certificate from the Downloads. I never get to choose "Install". Instead, I get a message saying something like "private key required to install a certificate". It disappears quickly, leaving me back at the "Install a certificate" screen. Perhaps I'm missing something obvious?

Third, for my Apple iPad (iOS 18.3.1), I use the Google Mail app. When I click on the attachment, I get a popup telling me the attachment name, that it's an X.509 certificate, and it's size in bytes.

Ok, so I send the email to my supersecret iCloud email account and open it in the Apple Mail app on my iPad. Now I can complete the first 6 steps for iOS. On the 7th step, I can see and examine the moOde certificate but i haven't found a way to install it (no visible Install button or such). I don't get any slider to

ETA (Sorry, major brain fart there) Now I can complete the first 4 steps for iOS. On the 5th step, I can see and examine the moOde certifcate but I get no indication that I can install it.

When I get time I'll check the procedure with my Win10 and Win11 virtual hosts. When I get more time, I'll see what can be done on my Linux laptop.

Regards,
Kent

**Tim Curtis** · 03-02-2025, 07:29 PM

(03-02-2025, 06:13 PM)TheOldPresbyope Wrote: First, a quibble. The manual generation of a ca-certificate is mentioned but the procedure isn't spelled out. Should there be some sort of "out of scope of this document" statement as I recall one of Robert's documents saying?

Second, for my Google Pixel 6a phone (Android 15), the steps described fall down at the point in step 7 where I select the ca-certificate from the Downloads. I never get to choose "Install". Instead, I get a message saying something like "private key required to install a certificate". It disappears quickly, leaving me back at the "Install a certificate" screen. Perhaps I'm missing something obvious?

Third, for my Apple iPad (iOS 18.3.1), I use the Google Mail app. When I click on the attachment, I get a popup telling me the attachment name, that it's an X.509 certificate, and it's size in bytes.

Ok, so I send the email to my supersecret iCloud email account and open it in the Apple Mail app on my iPad. Now I can complete the first 6 steps for iOS. On the 7th step, I can see and examine the moOde certificate but i haven't found a way to install it (no visible Install button or such). I don't get any slider to

ETA (Sorry, major brain fart there) Now I can complete the first 4 steps for iOS. On the 5th step, I can see and examine the moOde certifcate but I get no indication that I can install it.

When I get time I'll check the procedure with my Win10 and Win11 virtual hosts. When I get more time, I'll see what can be done on my Linux laptop.

Regards,
Kent

Here's some screen shots of the IOS procedure. For steps 4 and 5 look for "Install" at the top right. This part has several warning and confirmation screens.

1. First, attach the Cert to an Email
2. Open the Email on IOS
3. Click the Cert icon to download the "Profile"

4. Open Settings > General > VPN and Device Management
5. Under CONFIGURATON PROFILE, click and install the Cert profile

6. Open Settings > General > About > Certificate Trust Settings
7. Click the slider to trust the Cert

**TheOldPresbyope** · (This post was last modified: 03-02-2025, 08:31 PM by TheOldPresbyope.)

[Arrgh. Don't try to test when you're in the midst of doing three other things at the same time.]

Turns out I did complete the first 5 steps before I was called away. When I came back later, I thought I saw the cert listed in step 6 but didn't see any slider. Went back to steps 3-4 and now couldn't install the cert (note to self: because it was already installed, dummy!).

By then I was thoroughly confused so, instead of taking time out to make a cup of coffee and get some cat therapy, I posted and then back-edited my clumsy post.

I've now tried this procedure with both my iPad and an Apple iPhone SE (iOS 18.3). On both, I've apparently installed the cert but without an entry or a slider in step 6 I can't trust it per step 7.

From the iPhone SE, here's what I now see under General>VPN & Device Management

and under General>About>Security Trust Settings

Not sure what I'm doing wrong.

Regards,
Kent

Login
Username:
Password:	Lost Password?
	Remember me