Skip to content

[codex] Allow insecure TLS for iOS Komari servers#2

Merged
ciallothu merged 1 commit into
mainfrom
codex/fix-ios-insecure-tls
May 30, 2026
Merged

[codex] Allow insecure TLS for iOS Komari servers#2
ciallothu merged 1 commit into
mainfrom
codex/fix-ios-insecure-tls

Conversation

@ciallothu

Copy link
Copy Markdown
Owner

Summary

  • Add an iOS per-server Allow insecure TLS setting, defaulting to off for existing and new profiles.
  • Route Komari HTTP/RPC calls through a custom URLSession trust delegate when the option is enabled.
  • Apply the same TLS trust path to the iOS WebSSH WebSocket connection.

Why

Some self-hosted Komari instances use self-signed, private CA, or otherwise incomplete TLS certificate chains. iOS rejects those by default, which surfaces as a secure connection failure and prevents Nodes from loading. This keeps the safe default while giving trusted private deployments an explicit escape hatch.

Validation

  • git diff --check origin/main...HEAD
  • Local iOS build is not available in this environment, so GitHub Actions is the source of truth for compile validation.

@ciallothu ciallothu marked this pull request as ready for review May 30, 2026 15:51
@ciallothu ciallothu merged commit beb4794 into main May 30, 2026
3 checks passed
@ciallothu ciallothu deleted the codex/fix-ios-insecure-tls branch May 30, 2026 16:02
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant