starred/Proxyman
1
0
Fork 0
mirror of https://github.com/ProxymanApp/Proxyman.git synced 2026-04-28 09:35:55 +03:00
Code Issues 1.2k Projects Releases 5 Packages Wiki Activity

[GH-ISSUE #1758] Allow disabling SSL certificate verification #1751

New issue
Closed
opened 2026-03-03 19:54:03 +03:00 by kerem · 5 comments
kerem commented 2026-03-03 19:54:03 +03:00
Owner
Copy link

Originally created by @seidnerj on GitHub (Sep 2, 2023).
Original GitHub issue: https://github.com/ProxymanApp/Proxyman/issues/1758

Originally assigned to: @NghiaTranUIT on GitHub.

Description

When Proxyman executes requests on behalf of a client, or via the "Proxyman Networking" process (e.g. when using the web view preview tab), it validates the SSL certificate of the target server. It would be helpful if this could be disabled via a menu item.

Why this feature/change is important?

In many cases, especially in development scenarios, this is undesired for various reasons since SSL certificates are not ready/still incompatible, or when using IP addresses directly (for which the SSL certificates are not valid).

Example screen shot from the app

Screenshot 2023-09-01 at 18 24 08
Originally created by @seidnerj on GitHub (Sep 2, 2023). Original GitHub issue: https://github.com/ProxymanApp/Proxyman/issues/1758 Originally assigned to: @NghiaTranUIT on GitHub. ## Description When Proxyman executes requests on behalf of a client, or via the "Proxyman Networking" process (e.g. when using the web view preview tab), it validates the SSL certificate of the target server. It would be helpful if this could be disabled via a menu item. ## Why this feature/change is important? In many cases, especially in development scenarios, this is undesired for various reasons since SSL certificates are not ready/still incompatible, or when using IP addresses directly (for which the SSL certificates are not valid). ## Example screen shot from the app <img width="1726" alt="Screenshot 2023-09-01 at 18 24 08" src="https://github.com/ProxymanApp/Proxyman/assets/4147381/3bf5641d-6770-44b8-a246-490b2295404a">
kerem 2026-03-03 19:54:03 +03:00
kerem commented 2026-03-03 19:54:04 +03:00
Author
Owner
Copy link

@NghiaTranUIT commented on GitHub (Sep 3, 2023):

@seidnerj can you try this beta build: https://download.proxyman.io/beta/Proxyman_4.10.0_disable_ssl_verification_on_webview.dmg

I couldn't reproduce your issue, so I tried to disable the SSL Verification in the WKWebview according to Apple Guideline

<!-- gh-comment-id:1704054074 --> @NghiaTranUIT commented on GitHub (Sep 3, 2023): @seidnerj can you try this beta build: https://download.proxyman.io/beta/Proxyman_4.10.0_disable_ssl_verification_on_webview.dmg I couldn't reproduce your issue, so I tried to disable the SSL Verification in the WKWebview according to [Apple Guideline](https://developer.apple.com/documentation/foundation/url_loading_system/handling_an_authentication_challenge/performing_manual_server_trust_authentication)
kerem commented 2026-03-03 19:54:04 +03:00
Author
Owner
Copy link

@seidnerj commented on GitHub (Sep 3, 2023):

Works great, thanks a lot! The way you can reproduce this with the current version is to open Proxyman, "Override macOS settings" then run this curl request noted below (172.217.22.100 is one of the servers for www.google.com), and try to view the response using the Webview tab.

curl 'https://172.217.22.100/'
-H 'Host: www.google.com'
-H 'Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8'
-H 'User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Safari/605.1.15'
-H 'Accept-Language: en-GB,en-US;q=0.9,en;q=0.8'
-H 'Accept-Encoding: identity'
--proxy http://localhost:9090 -k

This might also apply to requests done by Proxyman generally on behalf of the origin client, no? also - might be a good ID to enable/disable SSL verification in general as this could be a security hazard.

Thanks a lot for the prompt response! 🙏

<!-- gh-comment-id:1704289753 --> @seidnerj commented on GitHub (Sep 3, 2023): Works great, thanks a lot! The way you can reproduce this with the current version is to open Proxyman, "Override macOS settings" then run this curl request noted below (172.217.22.100 is one of the servers for www.google.com), and try to view the response using the Webview tab. curl 'https://172.217.22.100/' \ -H 'Host: www.google.com' \ -H 'Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8' \ -H 'User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Safari/605.1.15' \ -H 'Accept-Language: en-GB,en-US;q=0.9,en;q=0.8' \ -H 'Accept-Encoding: identity' \ --proxy http://localhost:9090 -k This might also apply to requests done by Proxyman generally on behalf of the origin client, no? also - might be a good ID to enable/disable SSL verification in general as this could be a security hazard. Thanks a lot for the prompt response! 🙏
kerem commented 2026-03-03 19:54:04 +03:00
Author
Owner
Copy link

@NghiaTranUIT commented on GitHub (Sep 3, 2023):

Awesome, Glad to know it works fine 👍

<!-- gh-comment-id:1704294545 --> @NghiaTranUIT commented on GitHub (Sep 3, 2023): Awesome, Glad to know it works fine 👍
kerem commented 2026-03-03 19:54:04 +03:00
Author
Owner
Copy link

@seidnerj commented on GitHub (Sep 4, 2023):

Will this be included in the next version?

<!-- gh-comment-id:1705283244 --> @seidnerj commented on GitHub (Sep 4, 2023): Will this be included in the next version?
kerem commented 2026-03-03 19:54:04 +03:00
Author
Owner
Copy link

@NghiaTranUIT commented on GitHub (Sep 4, 2023):

Yes, it will be included in the next release 4.11.0 👍

<!-- gh-comment-id:1705283960 --> @NghiaTranUIT commented on GitHub (Sep 4, 2023): Yes, it will be included in the next release 4.11.0 👍
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
6.9.0
6.8.0
6.7.0
6.6.0
6.5.0
6.4.0
6.3.0
6.2.0
6.1.0
6.0.2
6.0.0
6.0.1
5.25.0
5.24.0
5.23.0
5.23.1
5.22.0
5.20.0
5.21.0
5.19.0
5.18.0
5.17.0
5.16.0
5.15.0
5.14.0
5.12.2
5.12.1
5.12.0
5.11.0
5.10.0
5.8.0
5.9.0
5.7.0
5.6.1
5.6.0
5.5.0
5.4.0
5.2.0
5.3.0
5.1.1
5.0.0
4.16.0
4.15.0
4.14.0
4.13.0
4.12.0
4.11.0
4.10.0
4.9.1
4.9.0
4.8.2
4.8.1
4.8.0
4.7.1
4.7.0
4.6.1
4.6.0
4.5.0
4.4.0
4.3.1
4.3.0
4.2.1
4.2.0
4.1.0
4.0.0
3.15.0
3.14.0
3.13.0
3.12.0
3.11.0
3.10.0
3.9.0
3.8.0
3.7.0
3.6.2
3.6.1
3.6.0
3.5.2
3.5.1
3.5.0
3.4.0
3.3.0
3.2.0
3.1.0
3.0.0
2.35.4
2.35.3
2.35.2
2.35.1
2.35.0
2.34.1
2.34.0
2.33.0
2.32.1
2.32.0
2.31.0
2.30.0
2.29.0
2.28.0
2.27.0
2.26.0
2.25.0
2.24.0
2.23.0
2.22.0
2.21.1
2.21.0
2.20.0
2.19.0
2.18.0
2.17.0
2.16.1
2.16.0
2.15.2
2.15.1
2.15.0
2.14.2
2.14.1
2.14.0
2.13.0
2.12.0
2.11.1
2.11.0
2.10.0
2.9.1
2.9.0
2.8.0
2.7.0
2.6.0
2.5.3
2.5.2
2.5.1
2.5.0
2.4.2
2.4.1
2.4.0
2.3.0
2.2.0
2.1.1
2.1.0
2.0.1
2.0.0
1.24.0
1.23.0
1.22.0
1.21.0
1.20.0
1.19.0
1.18.1
1.18.0
1.17.1
1.17.0
1.16.0
1.15.0
1.14.1
1.14.0
1.13.1
1.13.0
1.12.0
1.11.0
1.10.0
1.9.3
1.9.2
1.9.1
1.9.0
1.8.0
1.7.2
1.7.1
1.7.0
1.6.2
1.6.1
1.6.0
1.5.1
1.5.0
1.4.7
1.4.6
1.4.5.1
1.4.5
1.4.4.1
1.4.4
1.4.3
1.4.2
1.4.1.1
1.4.1
1.4
1.3.9
1.3.8
1.3.7
1.3.6
1.3.5
1.3.4.3
1.3.4.2
1.3.4.1
1.3.4
1.3.3
1.3.2
1.3.1
1.3
1.2
1.1.2
1.1.1
1.1
1.0.3
1.0.2
1.0
0.8.1
0.8
0.7
0.6
0.5.1
0.5
v0.4.1
Labels
Clear labels   
Discussion

   
Feature request

   
In Progress...

   
Plugins

   
Waiting response

   
Windows

   
Windows

   
bug

   
duplicate

   
enhancement

   
feature

   
good first issue

   
iOS

   
macOS 10.11

   
question

   
wontfix

   
Done
No labels
Discussion
Feature request
In Progress...
Plugins
Waiting response
Windows
Windows
bug
duplicate
enhancement
feature
good first issue
iOS
macOS 10.11
question
wontfix
Done
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/Proxyman#1751
No description provided.