...
Supports basic HTTP authentication against proxies if True (which, unlike EnableUnsafeAuthentication(), is the default setting). HTTP authentication uses an insecure protocol, which might allow others to easily determine the password. If this methodis False, it will refuse to provide passwords via basic HTTP authentication, and any requests requiring this authentication type will fail.
EnablePeerVerification(
...
verification As Boolean) As Boolean
...
Enables checking of TLS/SSL certificates. This method is set to true by default. Disabling peer verficiation allows you to bypass an expired certificate check.
EnableHostVerification(
...
verification As Boolean) As Boolean
...
Enables checking of the TLS/SSL certificate for the correct hostname. This method is set to true by default. Disabling host verification allows you to accept a certificate being sent for the wrong hostname.
Important
| Warning | ||
|---|---|---|
| ||
Peer verficiation and host verification are important security checks that prevent "man-in-the-middle" attacks. These features should only be disabled after careful consideration of the security implications. |
SetCertificatesFile(filename As String) As Boolean
Configures an alternative set of CA certificates for the connection. This method is useful if the connection certificates are signed by a CA that is not on the the default trusted list (for example, if your organization uses a private CA hierarchy that is not signed by a well known root CA). This method replaces the default list, so the passed certificate file must contain all acceptable CA certificates required for the connection.
SetClientCertificate(parameters As roAssociativeArray) As Boolean
...