Chromium Embedded Framework Forum

[paul2013]

Hi all, I'm using CEF3 and by trying out the cefclient demo I could verify that I cannot access web pages that request for a client certificate which on IE and Chrome would popup a window asking to choose the certificate to use if any and then the site loads, when I try to browse a page like that on the cefclient it simply doesn't go anywhere, no errors, nothing.
Is what I'm trying to do supported at all?

Chrome says: "Select a certificate to authenticate yourself to {URL}"
IE Says: "Select a Certificate"

Thanks!

[magreenblatt]

CEF does not expose an interface for installing client certs. However, it uses the OS cert store so you should be able to install them yourself using OS functions. Cert errors are reported to CefRequestHandler::OnCertificateError.

[paul2013]

CEF does not expose an interface for installing client certs. However, it uses the OS cert store so you should be able to install them yourself using OS functions. Cert errors are reported to CefRequestHandler::OnCertificateError.

Hi, the problem is, even though the certificate is installed the website won't load on the cefclient, on IE, Chrome and Firefox the user is always prompted to choose the certificate, even if there is just one certificate, on the cefclient it doesn't seem to read the certificate from the OS cert store, I added a breakpoint on OnCertificateError and even a message box but it doesn't get triggered.

Any ideas?
Thank you

Code: Select all

virtual bool OnCertificateError(
      cef_errorcode_t cert_error,
      const CefString& request_url,
      CefRefPtr<CefAllowCertificateErrorCallback> callback)
  {
     MessageBox(GetActiveWindow(), L"An error has ocurred.", L"Certificate Error", MB_OK | MB_ICONEXCLAMATION);
     return false;
  }

[magreenblatt]

on IE, Chrome and Firefox the user is always prompted to choose the certificate

This means that you haven't installed it on the system. See for example http://blogs.technet.com/b/sbs/archive/ ... vista.aspx.

[paul2013]

on IE, Chrome and Firefox the user is always prompted to choose the certificate

This means that you haven't installed it on the system. See for example http://blogs.technet.com/b/sbs/archive/ ... vista.aspx.

Thanks for sharing the link but I already have installed the trusted root certificate and user certificate and the website loads fine on all browsers without any warning whatsoever but it still won't load on the cefclient demo.
Any ideas?

[magreenblatt]

You'll have to debug the code to find out what's going on. You can build CEF/Chromium from source as described at https://code.google.com/p/chromiumembed ... ndBuilding.

[DoiSuthep]

Hi,

I'm having same issue. OnLoadError just gives -3 instead of prompt-dialog.
Adding register-key does not help:
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Chromium\AutoSelectCertificateForUrls]

Anyone solved or have ideas?

[mikematusiak]

Hey,
To get prompted for the certificate is quite complicated thing. I spent few days implementing this feature for CEF (for release branch 1650). The implementation mostly reuses the existing code for the chromium certificate selector. Before releasing this patch I would like to test it bit more and actually create patch based on trunk sources instead of release branch.

[jdavmo]

Hi mikematusiak

That is really good news that you have been able to patch CEF.

I would really like to try out the patch in its current form, would you mind providing the current version in the meantime while you are preparing the trunk version?

Thanks in advance!

[paul2013]

Hey,
To get prompted for the certificate is quite complicated thing. I spent few days implementing this feature for CEF (for release branch 1650). The implementation mostly reuses the existing code for the chromium certificate selector. Before releasing this patch I would like to test it bit more and actually create patch based on trunk sources instead of release branch.

That's great news, I would like to test.