Subsonic Forum

[HerrNilsson]

But LDAPS is only for encrypting the credentials from the subsonic server and LDAP-server, the webinterface in encrypted through the HTTPS correct?

Yeah, only the web interface is encrypted through the HTTPS connection. I just happen to use LDAPS because it's used for other service outside of my local network.

The REST and web interface is encrypted through HTTPS.

Yes but i mean if you have HTTPS and LDAP (not LDAPS) and logon through a public site. The credentials are sent to the webserver over HTTPS.
Then in cleartext from the webserver to the LDAP-server. That's not a problem in most cases because it is sent internally in the network .

[trogdan]

Yes but i mean if you have HTTPS and LDAP (not LDAPS) and logon through a public site. The credentials are sent to the webserver over HTTPS.
Then in cleartext from the webserver to the LDAP-server. That's not a problem in most cases because it is sent internally in the network .

Yeah, I understand that is your configuration, I was not meaning to imply that LDAP goes over the external network unencrypted. Was merely explaining that I said I use LDAPS because I use it externally, unlike your configuration, which should also be safe. (As long as you are not allowing guests on your internal network that could sniff other people's credentials).

[HerrNilsson]

Yes but i mean if you have HTTPS and LDAP (not LDAPS) and logon through a public site. The credentials are sent to the webserver over HTTPS.
Then in cleartext from the webserver to the LDAP-server. That's not a problem in most cases because it is sent internally in the network .

Yeah, I understand that is your configuration, I was not meaning to imply that LDAP goes over the external network unencrypted. Was merely explaining that I said I use LDAPS because I use it externally, unlike your configuration, which should also be safe. (As long as you are not allowing guests on your internal network that could sniff other people's credentials).

Exactly .

[daneren2005]

This is a long shot, but are either one of you willing to try Subsonic without LDAP, but still on https and see if it connects that way? I doubt LDAP would be the issue, but since you are both using it and it is a problem for you, I figured it would be worth a try.

[HerrNilsson]

I tried to connect with HTTPS with a local account on my subsonic server. Same problem .

[daneren2005]

If anyone else has this problem with a valid certificate, just send me a email for a updated apk until I do the next release.

[HerrNilsson]

If anyone else has this problem with a valid certificate, just send me a email for a updated apk until I do the next release.

Do you have an apk that might work? In that case i'd be happy to try it out.

[daneren2005]

Yes I fixed an issue with people who are using valid certificates.

Sent from my Nexus 5 using Tapatalk

[HerrNilsson]

Yes I fixed an issue with people who are using valid certificates.

Sent from my Nexus 5 using Tapatalk

StartSSL is a valid certificate i guess?
Would it be possible to test the new apk with my setup?
Thanks!

[daneren2005]

Yes, StartSSL is a valid cert. Send me a email and I can give it to you.

[HerrNilsson]

Done. Thanks mate!

[daneren2005]

I never got any email. Should be at dsub.android@gmail.com

[HerrNilsson]

I've sent another one. Spam folder?
Otherwise PM might work?

[daneren2005]

I logged into that account and checked the spam folder, and no dice. Gmail is sending into the nether. I guess pm your email and I can email it to you (I can't attach it here because it's more than 2MB).

[HerrNilsson]

I logged into that account and checked the spam folder, and no dice. Gmail is sending into the nether. I guess pm your email and I can email it to you (I can't attach it here because it's more than 2MB).

Alright, thanks!