this post was submitted on 15 Sep 2024
23 points (96.0% liked)

Selfhosted

40246 readers
858 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 1 year ago
MODERATORS
 

This may be more of an Android issue than self-hosting, but i run Radicale on my personal server to host caldav/carddav services. I want to login with uname&pword with a certificate. I found this video in Davx5 github page showing that a user can select the cert:

video

I generated a self-signed cert from my server and installed that to my Android phone via Settings > Security&Privacy > Encryption&Credentials. But i dont get the same as the video. It keeps telling me No certificate found

Clicking the install button and selecting my cert will say

Install CA certificates in Settings This certificate from null must be installed in Settings. Only install CA certificates from organizations you trust.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 1 points 2 months ago* (last edited 2 months ago) (1 children)

I have a self-hosted Baikal server with self-signed CA on Android 14 and it works.

However, I didn't had to add the certificate to Davx⁵ itself. Adding a rootCA into your device and your reverse proxy handling the request should work as expected over https.

Those kind of things are difficult to troubleshoot, this could be:

  • Bad rootCA certificate, missing the necessary options ?
  • Wrong certificate handled by your reverse proxy ?
  • Radicale doesn't recognize your certificate extension ?
  • Wrong networking configuration ?
  • Bug ?
  • ....

We need more infos about your setup:

  • Do you use a reverse proxy ?
  • Had you already any success with this certificate within an other application ?
  • Any logs from your Android, Davx⁵?
[–] [email protected] 1 points 2 months ago

like the other commenter said, CA is different from a client cert. I'll try that and see how it goes