Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/MaxToyberman/react-native-ssl-pinning

React Native ssl pinning and cookies handling based on okhttp3 on (Android). and AFNetworking on (iOS)
https://github.com/MaxToyberman/react-native-ssl-pinning

Last synced: about 2 months ago
JSON representation

React Native ssl pinning and cookies handling based on okhttp3 on (Android). and AFNetworking on (iOS)

Host: GitHub
URL: https://github.com/MaxToyberman/react-native-ssl-pinning
Owner: MaxToyberman
License: mit
Created: 2018-02-13T05:55:49.000Z (almost 7 years ago)
Default Branch: master
Last Pushed: 2024-10-23T12:26:49.000Z (3 months ago)
Last Synced: 2024-10-30T00:27:07.496Z (3 months ago)
Language: Java
Homepage:
Size: 506 KB
Stars: 345
Watchers: 6
Forks: 103
Open Issues: 65
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

awesome-react-native - react-native-ssl-pinning ★20 - React Native SSL pinning using OkHttp 3 on Android, and AFNetworking on iOS (Components / System)
awesome-react-native - react-native-ssl-pinning ★20 - React Native SSL pinning using OkHttp 3 on Android, and AFNetworking on iOS (Components / System)
awesome-react-native - react-native-ssl-pinning ★20 - React Native SSL pinning using OkHttp 3 on Android, and AFNetworking on iOS (Components / System)

README

        
# react-native-ssl-pinning

React-Native ssl pinning & public key pinning using OkHttp 3 in Android, and AFNetworking on iOS. 

## NOTES:

- for RN 0.60.0 or later use `react-native-ssl-pinning@latest`

## Getting started

`$ npm install react-native-ssl-pinning --save`

### Mostly automatic installation

> If you are using `React Native 0.60.+` [the link should happen automatically](https://github.com/react-native-community/cli/blob/master/docs/autolinking.md). in iOS run pod install

`$ react-native link react-native-ssl-pinning`

### Manual installation

#### iOS

1. In XCode, in the project navigator, right click `Libraries` ➜ `Add Files to [your project's name]`

2. Go to `node_modules` ➜ `react-native-ssl-pinning` and add `RNSslPinning.xcodeproj`

3. In XCode, in the project navigator, select your project. Add `libRNSslPinning.a` to your project's `Build Phases` ➜ `Link Binary With Libraries`

4. Run your project (`Cmd+R`)<

#### Android

Add maven { url "https://jitpack.io" } to project level build.gradle like this: 

```

allprojects {

    repositories {

	maven { url "https://jitpack.io" }

    }

}

```

1. Open up `android/app/src/main/java/[...]/MainActivity.java`

  - Add `import com.toyberman.RNSslPinningPackage;` to the imports at the top of the file

  - Add `new RNSslPinningPackage()` to the list returned by the `getPackages()` method

2. Append the following lines to `android/settings.gradle`:

  	```

  	include ':react-native-ssl-pinning'

  	project(':react-native-ssl-pinning').projectDir = new File(rootProject.projectDir, 	'../node_modules/react-native-ssl-pinning/android')

  	```

3. Insert the following lines inside the dependencies block in `android/app/build.gradle`:

  	```

      compile project(':react-native-ssl-pinning')

  	```

## Usage

#### Create the certificates:

1. openssl s_client -showcerts -servername google.com -connect google.com:443 javax.net.ssl.SSLPeerUnverifiedException: Certificate pinning failure!

		Peer certificate chain:

		sha256/afwiKY3RxoMmLkuRW1l7QsPZTJPwDS2pdDROQjXw8ig=: CN=publicobject.com, OU=PositiveSSL

		sha256/klO23nT2ehFDXCfx3eHTDRESMz3asj1muO+4aIdjiuY=: CN=COMODO RSA Secure Server CA

		sha256/grX4Ta9HpZx6tSHkmCrvpApTQGo67CYDnvprLg5yRME=: CN=COMODO RSA Certification Authority

		sha256/lCppFqbkrlJ3EcVFAkeip0+44VaoJUymbnOaEUk7tEU=: CN=AddTrust External CA Root

		Pinned certificates for publicobject.com:

		sha256/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA=

		at okhttp3.CertificatePinner.check(CertificatePinner.java)

		at okhttp3.Connection.upgradeToTls(Connection.java)

		at okhttp3.Connection.connect(Connection.java)

		at okhttp3.Connection.connectAndSetOwner(Connection.java)

		- Follow up by pasting the public key hashes from the exception into the certificate pinner's configuration

 

 ### Certificate Pinning

```javascript

import {fetch} from 'react-native-ssl-pinning';

fetch(url, {

	method: "POST" ,

	timeoutInterval: communication_timeout, // milliseconds

	body: body,

	// your certificates array (needed only in android) ios will pick it automatically

	sslPinning: {

		certs: ["cert1","cert2"] // your certificates name (without extension), for example cert1.cer, cert2.cer

	},

	headers: {

		Accept: "application/json; charset=utf-8", "Access-Control-Allow-Origin": "*", "e_platform": "mobile",

	}

})

.then(response => {

	console.log(`response received ${response}`)

})

.catch(err => {

	console.log(`error: ${err}`)

})

```

 ### Public Key Pinning

```javascript

import {fetch} from 'react-native-ssl-pinning';

fetch("https://publicobject.com", {

      method: "GET" ,

      timeoutInterval: 10000, // milliseconds

      // your certificates array (needed only in android) ios will pick it automatically

      pkPinning: true,

      sslPinning: {

        certs: ["sha256//r8udi/Mxd6pLO7y7hZyUMWq8YnFnIWXCqeHsTDRqy8=",

        "sha256/YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg=",

        "sha256/Vjs8r4z+80wjNcr1YKepWQboSIRi63WsWXhIMN+eWys="

      ]

      },

      headers: {

        Accept: "application/json; charset=utf-8", "Access-Control-Allow-Origin": "*", "e_platform": "mobile",

      }

	})

	

```

### Disable Pinning

```javascript

 fetch("https://publicobject.com", {

      method: "GET" ,

      timeoutInterval: 10000, // milliseconds

      disableAllSecurity: true,

      headers: {

        Accept: "application/json; charset=utf-8", "Access-Control-Allow-Origin": "*", "e_platform": "mobile",

      }

	})

		

```

### Case Sensitive Headers

```javascript

 fetch("https://publicobject.com", {

      method: "GET" ,

      timeoutInterval: 10000, // milliseconds

      caseSensitiveHeaders: true, //in case you want headers to be case Sensitive

      headers: {

		Accept: "application/json; charset=utf-8", "Access-Control-Allow-Origin": "*", "e_platform": "mobile",

		SOAPAction: "testAction",

      }

	})

```

 ### Cookies Handling

```javascript

import {removeCookieByName} from 'react-native-ssl-pinning';

removeCookieByName('cookieName')

.then(res =>{

	console.log('removeCookieByName');

})

getCookies('domain')

.then(cookies => {

// do what you need with your cookies

})

```

  ## Multipart request (FormData)

```javascript

let formData = new FormData()

#You could add a key/value pair to this using #FormData.append:

formData.append('username', 'Chris');

# Adding a file to the request

formData.append('file', {

		name: encodeURIComponent(response.fileName),

		fileName: encodeURIComponent(response.fileName),

		type: this._extractFileType(response.fileName),

		uri: response.uri

})

fetch(url, {

	method: "POST" ,

	timeoutInterval: communication_timeout, // milliseconds

	body: {

		formData: request,

	},

	sslPinning: {

		certs: ["cert1","cert2"]

	},

	headers: {

		accept: 'application/json, text/plain, /',

	}

})

don't add 'content-type': 'multipart/form-data; charset=UTF-8',

Setting the Content-Type header manually means it's missing the boundary parameter. Remove that header and allow fetch to generate the full content type.

```

## License

This project is licensed under the terms of the MIT license.