[GH-ISSUE #208] Option to accept Self Signed Certificates #201

New issue

Closed

opened 2026-02-25 22:36:27 +03:00 by kerem · 12 comments

kerem commented 2026-02-25 22:36:27 +03:00

Owner

Copy link

Originally created by @giomf on GitHub (Dec 4, 2018).
Original GitHub issue: https://github.com/floccusaddon/floccus/issues/208

Software versions

• Browser: Firefox 63.0.3
• Nextcloud: 14.0.4.2
• Nextcloud Bookmarks app: 0.14.2
• Floccus: 3.1.14
• Floccus sync method: nextcloud-folders

Steps to reproduce

1. Open Firefox (Private Mode)
2. Sync by clicking on "Sync now"

Expected outcome

Because Im in Private Mode, the self signed Certificates never gets saved.
A Dialog, that Im trying to connect to an "unsafe" webpage with an option to accept (Like Firefox normally does)

Actual outcome

"Network Error: Check your Connection or your account details"

Workaround

So as workaround I have to connect to my Server first, accept the untrusted Certificate and after that I can Sync via floccus

Originally created by @giomf on GitHub (Dec 4, 2018). Original GitHub issue: https://github.com/floccusaddon/floccus/issues/208 <!-- Hello there! Thank you for providing feedback! Please answer the below questions to allow for as smooth a process of tackling the issue as possible :) (Note: Everything surrounded by arrows, like this text for example, will not be visible.) --> ### Software versions <!-- Please provide the versions of the following software products in your set up --> - Browser: Firefox 63.0.3 - Nextcloud: 14.0.4.2 - Nextcloud Bookmarks app: 0.14.2 - Floccus: 3.1.14 - Floccus sync method: nextcloud-folders <!-- either XBEL/webdav (signified as `webdav`), nextcloud Bookmarks legacy (signified as `nextcloud`), or nextcloud Bookmarks v0.14+ with folders (signified as `nextcloud-folders`) --> ### Steps to reproduce <!-- What did you do? Be as specific as possible --> 1. Open Firefox (Private Mode) 2. Sync by clicking on "Sync now" ### Expected outcome <!-- What did you think was going to happen or what do you think should have happened? --> Because Im in Private Mode, the self signed Certificates never gets saved. A Dialog, that Im trying to connect to an "unsafe" webpage with an option to accept (Like Firefox normally does) ### Actual outcome <!-- What actually happened after you did the above steps? --> "Network Error: Check your Connection or your account details" ### Workaround So as workaround I have to connect to my Server first, accept the untrusted Certificate and after that I can Sync via floccus <!-- It is useful to attach a debug log file to the issue. You can obtain a debug log of the most recent sync runs by clicking 'Debug log' in the bottom right corner of the floccus panel in your browser. If you don't want your bookmarks to be public, you can send the log file to me via mail --> <!-- Thanks! Now, hit Submit and wait for a reply :) -->

kerem closed this issue 2026-02-25 22:36:27 +03:00

kerem commented 2026-02-25 22:36:28 +03:00

Author

Owner

Copy link

@marcelklehr commented on GitHub (Dec 9, 2018):

Hey,

It should be possible to store a permanent exception for your self-signed certificate. This way you don't have to manually accept it every time. Let me know if that works.

<!-- gh-comment-id:445501211 --> @marcelklehr commented on GitHub (Dec 9, 2018): Hey, It should be possible to [store a permanent exception](https://www.attachmate.com/documentation/gateway-1-1/gateway-admin-guide/data/fxg_add_untrusted_cert.htm) for your self-signed certificate. This way you don't have to manually accept it every time. Let me know if that works.

kerem commented 2026-02-25 22:36:28 +03:00

Author

Owner

Copy link

@giomf commented on GitHub (Dec 9, 2018):

Hi,
as I mentioned, its not possible because I'm using Firefox in Private-mode. so no History neither Certificates are stored permanently. After every restart I have to accept it again.

<!-- gh-comment-id:445529838 --> @giomf commented on GitHub (Dec 9, 2018): Hi, as I mentioned, its not possible because I'm using Firefox in Private-mode. so no History neither Certificates are stored permanently. After every restart I have to accept it again.

kerem commented 2026-02-25 22:36:28 +03:00

Author

Owner

Copy link

@marcelklehr commented on GitHub (Dec 9, 2018):

I see. Is it possible to disable private mode temporarily and then add the exception permanently?

<!-- gh-comment-id:445540849 --> @marcelklehr commented on GitHub (Dec 9, 2018): I see. Is it possible to disable private mode temporarily and then add the exception permanently?

kerem commented 2026-02-25 22:36:28 +03:00

Author

Owner

Copy link

@giomf commented on GitHub (Dec 9, 2018):

Yes that's possible.
But I would appreciate to have this feature.

<!-- gh-comment-id:445541316 --> @giomf commented on GitHub (Dec 9, 2018): Yes that's possible. But I would appreciate to have this feature.

kerem commented 2026-02-25 22:36:28 +03:00

Author

Owner

Copy link

@marcelklehr commented on GitHub (Dec 9, 2018):

Unfortunately, I don't think it's possible to reach that deeply into the security architecture with an extension. It's also kind of out of scope for floccus to handle this. In a time of let's encyrpt availability, I would simply suggest to use them as a CA and avoid self-signed certificates, if possible.

<!-- gh-comment-id:445542274 --> @marcelklehr commented on GitHub (Dec 9, 2018): Unfortunately, I don't think it's possible to reach that deeply into the security architecture with an extension. It's also kind of out of scope for floccus to handle this. In a time of let's encyrpt availability, I would simply suggest to use them as a CA and avoid self-signed certificates, if possible.

kerem commented 2026-02-25 22:36:28 +03:00

Author

Owner

Copy link

@giomf commented on GitHub (Dec 9, 2018):

Ok I see,
Unfortunately, Im dealing with some kind of dyndns. so no Let's Encrypt for me...
Thank you anyway

<!-- gh-comment-id:445546186 --> @giomf commented on GitHub (Dec 9, 2018): Ok I see, Unfortunately, Im dealing with some kind of dyndns. so no Let's Encrypt for me... Thank you anyway

kerem commented 2026-02-25 22:36:28 +03:00

Author

Owner

Copy link

@mnalis commented on GitHub (Dec 17, 2018):

Just to note that Let's Encrypt works just fine with dynamic IPs (like in dyndns) for me.

All it requires is that your hostname resolves to correct IP at the moment of renewal, so LE servers can connect to your LE script. So, if your machine HTTPS can be directly reached on the Internet (without using VPNs or similar hacks), you can use Let's Encrpyt to provide its certificates.
Hopefully it helps the OP.

<!-- gh-comment-id:447810434 --> @mnalis commented on GitHub (Dec 17, 2018): Just to note that Let's Encrypt works just fine with dynamic IPs (like in dyndns) for me. All it requires is that your hostname resolves to correct IP at the moment of renewal, so LE servers can connect to your LE script. So, if your machine HTTPS can be directly reached on the Internet (without using VPNs or similar hacks), you can use Let's Encrpyt to provide its certificates. Hopefully it helps the OP.

kerem commented 2026-02-25 22:36:28 +03:00

Author

Owner

Copy link

@bernd-wechner commented on GitHub (Dec 17, 2018):

I can second mnalis, and state that I use letsencrypt to maintain certs for at least two servers behind a single router (gateway) that has a dynamic names (ddns). Yes, plural. Multiple domain names pointing to one dynamic IP address at which my gateway farms incoming traffic out to a machine on my LAN based on the domain name used. And the names are managed just fine with letsencrypt.

<!-- gh-comment-id:447813967 --> @bernd-wechner commented on GitHub (Dec 17, 2018): I can second mnalis, and state that I use letsencrypt to maintain certs for at least two servers behind a single router (gateway) that has a dynamic names (ddns). Yes, plural. Multiple domain names pointing to one dynamic IP address at which my gateway farms incoming traffic out to a machine on my LAN based on the domain name used. And the names are managed just fine with letsencrypt.

kerem commented 2026-02-25 22:36:28 +03:00

Author

Owner

Copy link

@giomf commented on GitHub (Dec 30, 2018):

Thanks,
I will give it a try

<!-- gh-comment-id:450552435 --> @giomf commented on GitHub (Dec 30, 2018): Thanks, I will give it a try

kerem commented 2026-02-25 22:36:28 +03:00

Author

Owner

Copy link

@marcelklehr commented on GitHub (Apr 12, 2022):

Adding android user level certs does not seem to work for everyone.

<!-- gh-comment-id:1096722638 --> @marcelklehr commented on GitHub (Apr 12, 2022): Adding android user level certs does not seem to work for everyone.

kerem commented 2026-02-25 22:36:28 +03:00

Author

Owner

Copy link

@marcelklehr commented on GitHub (Apr 12, 2022):

Oops, wrong issue. Sorry.

<!-- gh-comment-id:1096790221 --> @marcelklehr commented on GitHub (Apr 12, 2022): Oops, wrong issue. Sorry.

kerem commented 2026-02-25 22:36:28 +03:00

Author

Owner

Copy link

@github-actions[bot] commented on GitHub (Apr 13, 2023):

This issue has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs.

<!-- gh-comment-id:1506179188 --> @github-actions[bot] commented on GitHub (Apr 13, 2023): This issue has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs.

kerem referenced this issue 2026-02-25 22:36:29 +03:00

[GH-ISSUE #215] Chromium Brave: Folder #-1[undefined] contains an nonexistent bookmark 19875 #206

kerem referenced this issue 2026-02-25 22:36:29 +03:00

[GH-ISSUE #215] Chromium Brave: Folder #-1[undefined] contains an nonexistent bookmark 19875 #206

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

develop

dependabot/npm_and_yarn/fast-xml-parser-5.7.0

dependabot/npm_and_yarn/xmldom/xmldom-0.8.13

dependabot/npm_and_yarn/protocol-buffers-schema-3.6.1

master

fix/xml-entity-limit

all-contributors/add-aaryanvangari

fix/subscanner-residuals

test/subscanner-residuals

test/problematic-seeds

perf/improve-build-time

perf/native-startup

fix/continuation-null-cheks

dropbox

fix/clear-indexeddb-after-sync

dependabot/npm_and_yarn/vuetify-3.11.4

fix/slim-down-continuation

test/background-worker

refactor/fail-build-if-native-uses-browser-api

feat/improve-failsafe-wording

dependabot/npm_and_yarn/multi-0520f5abeb

feat/release-build

fix/more-mapping-errors

dependabot/npm_and_yarn/intl-messageformat-10.7.18

enh/split-sync-interval-and-auto-sync

enh/gdrive-timeout

feat/safari

feat/capabilities

feat/xxhash3

feat/murmur3

fix/gdrive-error-handling

fix/correctness-fixes

fix/linkwarden

feat/orion

fix/nocache-tests

feat/tab-groups

fix/git-never-force-push

fix/xbel-parse-errors

fix/git-push-errors

fix/chrome-main-folder-ids

dependabot/npm_and_yarn/multi-a9f852c250

chore/use-local-linkwarden-container-in-ci

all-contributors/add-balthanon

dependabot/npm_and_yarn/multi-7c5da94753

fix/revert-indexeddb-logger

fix/acknowlegde-abuse

dependabot/npm_and_yarn/eslint-import-resolver-webpack-0.13.10

fix/rip-out-continuations

fix/webdav-filesize-depth-header

fix/changes-while-syncing

fix/addition-failsafe-minimum

feat/indexeddb-logs

feat/addition-failsafe

fix/webdav-check-filesize

fix/orion

fix/bounded-exponential-backoff

fix/dont-repeat-on-sync-fail

fix-tests

fix/speedup-tab-update-cb

all-contributors/add-andybalaam

all-contributors/add-macrogreg

fix/parse-tag-value

fix/cleanup-deps

refactor/partial-set-data-with-lock

fix/nc-bookmarks-update

fix/move-stabiltiy-same-titled-folders

fix/ios-share-extension

fix/update-selenium

fix/chrome-net-errors

enh/nc-bm-js

sentry

fix/unidirectional-scanner-shoudl-use-mappings

enh/interrupts

dependabot/npm_and_yarn/vue-loader-17.4.2

ci/build-ios

enh/manifest-v3

release/4.19.0

fix/codeql

fix/google-drive-ios

all-contributors/add-dmotte

fix/unidirectional-sync

fix/interrupts

all-contributors/add-pinpontitit

all-contributors/add-dsiminiuk

test/old-apis

test/interrupts-on-nextcloud-bookmarks

feature/no-hashing-in-diff

feature/improve-diff-performance

capacitor

enh/rename-nextcloud-folders

fix/complex-hierarchy-reversal-2

tests/coverage

feature/google-drive

dependabot/npm_and_yarn/eslint-plugin-vue-7.6.0

fix/crypto

dependabot/npm_and_yarn/sass-1.32.7

dependabot/npm_and_yarn/css-loader-5.0.2

dependabot/npm_and_yarn/webpack-cli-4.5.0

fix/performance-hash-caching

dependabot/npm_and_yarn/eslint-plugin-standard-5.0.0

dependabot/npm_and_yarn/sass-loader-10.1.1

dependabot/npm_and_yarn/eslint-import-resolver-webpack-0.13.0

dependabot/npm_and_yarn/webpack-merge-5.7.3

dependabot/npm_and_yarn/p-queue-6.6.2

dependabot/npm_and_yarn/throttle-debounce-3.0.1

fix/lww-move-test

fix/overwrite-strategy

fix/root-folder-sync

enh/local-hash-cash

test/ci

ui/vue

cookie-hack

fix/travis

rollup

refactor/ui

webdav

refactor/modularize

v5.9.1

v5.9.0

v5.8.6

v5.8.5

v5.8.4

v5.8.3

v5.8.2

v5.8.1

v5.8.0

v5.7.0

v5.6.0

v5.5.6

v5.5.5

v5.5.4

v5.5.3

v5.5.2

v5.5.1

v5.5.0

v5.4.5

v5.4.4

v5.4.3

v5.4.2

v5.4.2-alpha.1

v5.4.1

v5.4.0

v5.3.4

v5.3.3

v5.3.1

v5.3.0

v5.3.0-beta.1

v5.2.7

v5.2.6

v5.2.5

v5.2.4

v5.2.3

v5.2.2

v5.2.1

v5.2.0

v5.2.0-beta.3

v5.2.0-beta.2

v5.2.0-beta.1

v5.1.7

v5.1.6

v5.1.5

v5.1.4

v5.1.3

5.1.3-beta.1

v5.1.2

v5.1.1

v5.1.0

v5.0.12

v5.0.12-beta.1

v5.0.11

v5.0.10

v5.0.9

v5.0.8

v5.0.7

v5.0.6

v5.0.5

v5.0.4

v5.0.3

v5.0.2

v5.0.1

v5.0.0

v4.19.1

v4.19.0

v4.18.1

v4.18.0

v4.17.1

v4.17.0

v4.16.0

v4.15.0

v4.14.0

v4.13.1

v4.13.0

v4.12.0

v4.11.0

v4.11.0-alpha.0

v4.10.1

v4.10.0

v4.9.0

v4.8.7

v4.8.6

v4.8.4

v4.8.3

v4.8.2

v4.8.1

v4.8.0

v4.7.0

v4.6.4

v4.6.3

v4.6.2

v4.6.1

v4.6.0

v4.5.0

v4.4.10

v4.4.9

v4.4.8

v4.4.7

v4.4.6

v4.4.5

v4.4.4

v4.4.3

v4.4.2

v4.4.1

v4.4.0

v4.4.0-rc1

v4.3.0

v4.2.6

v4.2.5

v4.2.4

v4.2.3

v4.2.2

v4.2.1

v4.2.0

v4.2.0-beta.4

v4.2.0-beta.3

v4.2.0-beta.2

v4.2.0-beta.1

v4.1.0

v4.0.4

v4.0.3

v4.0.2

v4.0.1

v4.0.0

v4

v4.0.0-alpha.3

v4.0.0-alpha.2

v4.0.0-alpha.1

v3.5.3

v3.5.2

v3.5.1

v3.5.0

v3.4.2

v3.4.1

v3.4.0

v3.4.0-beta.3

v3.4.0-beta.2

v3.4.0-beta.1

v3.3.2

v3.3.1

v3.3.0

v3.3.0-beta.5

v3.3.0-beta.4

v3.3.0-beta.3

v3.3.0-beta.2

v3.3.0-beta.1

v3.2.16

v3.2.15

v3.2.14

v3.2.13

v3.2.12

v3.2.11

v3.2.10

v3.2.9

v3.2.8

v3.2.7

v3.2.6

v3.2.5

v3.2.4

v3.2.3

v3.2.2

v3.2.1

v3.2.0

v3.1.15

v3.1.14

v3.1.13

v3.1.12

v3.1.11

v3.1.10

v3.1.9

v3.1.8

v3.1.7

v3.1.6

v3.1.5

v3.1.4

v3.1.3

v3.1.2

v3.1.1

v3.1.0

v3.0.10

v3.0.9

v3.0.8

v3.0.7

v3.0.6

v3.0.5

v3.0.4

v3.0.3

v3.0.2

v3.0.1

v3.0.0

v3.0.0-beta.9

v3.0.0-beta.8

v3.0.0-beta.7

v2.2.9

v3.0.0-beta.6

v3.0.0-beta.5

v3.0.0-beta.4

v3.0.0-beta.3

v3.0.0-beta.2

v3.0.0-beta-1

v3.0.0-alpha-1

v2.2.8

v2.2.7

v2.2.6

v2.2.5

v2.2.4

v2.2.3

v2.2.2

v2.2.1

v2.2.0

v2.1.0

v2.0.6

v2.0.5

v2.0.4

v2.0.3

v2.0.2

v2.0.1

v2.0.0

v2.0.0-beta.2

v1.3.4

v2.0.0-beta.1

v1.3.3

v1.3.2

v1.3.1

v1.3.0

v1.3.0-beta.5

v1.3.0-beta.4

v1.3.0-beta.3

v1.3.0-beta.2

v1.3.0-beta1

v1.2.0

v1.1.2

v1.1.1

v1.1.0

v1.0.1

v1.0.0

Labels

Clear labels   

browser-specific

  

bug

  

correctness issues

  

enhancement

  

feature: Google Drive

  

feature: Linkwarden

  

feature: git

  

feature: nextcloud-bookmarks

  

feature: tabs

  

feature: webdav

  

help wanted

  

native-app

  

priority: high

  

priority: low

  

priority: medium

  

pull-request

Mirrored from GitHub Pull Request

  

question

  

question

  

stale

  

upstream

  

waiting for more information

  

wontfix

  

🙁 Not following issue template

No labels

browser-specific

bug

correctness issues

enhancement

feature: Google Drive

feature: Linkwarden

feature: git

feature: nextcloud-bookmarks

feature: tabs

feature: webdav

help wanted

native-app

priority: high

priority: low

priority: medium

pull-request

question

question

stale

upstream

waiting for more information

wontfix

🙁 Not following issue template

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/floccus#201

No description provided.