X
Tap here to go to the mobile version of the site.

Support Forum

Where did "Add exception" go?

Posted

In the latest update to Firefox for Android - 31.0 - the "Add exception" option disappeared on the Invalid certificate page. I have done a ton of research and apparently no one is bothered or am I the only one having this problem?

The website is https://ap2.commercialpress.com.hk Android ICS 4.0.4 There is a "Try again" button and nothing else. The previous versions up to 29.0.1 did ask for an exception through a dialog popup. 31.0 does not. I did try all possible combinations of all "cert" settings in about:config.

Is it going to be fixed?

In the latest update to Firefox for Android - 31.0 - the "Add exception" option disappeared on the Invalid certificate page. I have done a ton of research and apparently no one is bothered or am I the only one having this problem? The website is https://ap2.commercialpress.com.hk Android ICS 4.0.4 There is a "Try again" button and nothing else. The previous versions up to 29.0.1 did ask for an exception through a dialog popup. 31.0 does not. I did try all possible combinations of all "cert" settings in about:config. Is it going to be fixed?

Additional System Details

Installed Plug-ins

  • Shockwave Flash 11.1 r115

Application

  • User Agent: Mozilla/5.0 (Android; Mobile; rv:31.0) Gecko/31.0 Firefox/31.0

More Information

jscher2000
  • Top 10 Contributor
3750 solutions 33253 answers

Helpful Reply

Firefox 31 introduced a new certificate validation component, and in some cases (I do not know the exact pattern), that third section of the error page is missing, or you get a different error page.

When I view the certificate in Google Chrome (desktop) it appears to be self-signed by the organization and not any recognized certificate authority.

On desktop Firefox, you could export a certificate from one of your other browsers and import it into Firefox as a workaround. I don't know whether there is a similar workaround on Android since all of the browsers have much more limited feature sets.

Firefox 31 introduced a new certificate validation component, and in some cases (I do not know the exact pattern), that third section of the error page is missing, or you get a different error page. When I view the certificate in Google Chrome (desktop) it appears to be self-signed by the organization and not any recognized certificate authority. On desktop Firefox, you could export a certificate from one of your other browsers and import it into Firefox as a workaround. I don't know whether there is a similar workaround on Android since all of the browsers have much more limited feature sets.

Question owner

i see, thank you for your reply, jscher2000 (^_^)

but well, that seems no good, i did some research and found two different ways to import certificates into mobile firefox, one thru an addon called Cert Manager (https://addons.mozilla.org/en-US/mobile/addon/cert-manager/) which says is not compatible with ff 31.0, and another extremely elaborate process using these tools: http://dl.dropbox.com/u/34141866/NSS_Tools_x86_from_NSS_3.12.7%20Tools.zip

However the method described there is for pk12 certificates and i can't seem to be able to export this from the desktop ff for this website, supposedly because the certificate does not have a "private key".

is there another way to import this certificate which i can export from desktop ff in these formats: PEM, CRT, DER, P7C ?

otherwise until firefox does offer to add the exception itself, i'll have to drop all future updates. it's so sad how good things always go "better" by losing features or functionality.

i see, thank you for your reply, jscher2000 (^_^) but well, that seems no good, i did some research and found two different ways to import certificates into mobile firefox, one thru an addon called Cert Manager (https://addons.mozilla.org/en-US/mobile/addon/cert-manager/) which says is not compatible with ff 31.0, and another extremely elaborate process using these tools: http://dl.dropbox.com/u/34141866/NSS_Tools_x86_from_NSS_3.12.7%20Tools.zip However the method described there is for pk12 certificates and i can't seem to be able to export this from the desktop ff for this website, supposedly because the certificate does not have a "private key". is there another way to import this certificate which i can export from desktop ff in these formats: PEM, CRT, DER, P7C ? otherwise until firefox does offer to add the exception itself, i'll have to drop all future updates. it's so sad how good things always go "better" by losing features or functionality.
Swarnava Sengupta 482 solutions 3210 answers

I filled a bug: https://bugzilla.mozilla.org/show_bug.cgi?id=1057344

you can register on bugzilla and add yourself on cc list to get notification about latest update.

Thanks

I filled a bug: https://bugzilla.mozilla.org/show_bug.cgi?id=1057344 you can register on bugzilla and add yourself on cc list to get notification about latest update. Thanks

Question owner

hey, swarnava, wow, thanks (^_^) i saw it was getting looked into. yes, the cert and security on the site is non-standard, but nevertheless. thanks again.

hey, swarnava, wow, thanks (^_^) i saw it was getting looked into. yes, the cert and security on the site is non-standard, but nevertheless. thanks again.