0

Server is setup so the client providing certificate is optional. It is needed only for 2 endpoints (so small percentage).

We have noticed that users with Android 9 and chrome have complained that visiting even just a root page it asks them to provide certificate.

"The Chrome app has requested a certificate. Choosing a certificate will let the app use this identity with servers now and in the future. The app has identified the requesting server as myserverulr.domain, but you should only give the app access to the certificate if you trust the app"

Spring boot

application.properties server.ssl.client-auth=want

This happens with very few users but it's still a problem. Is there any workaround for it?

Mart123
  • 327
  • 2
  • 13

0 Answers0