Certificate pinning and scheme/domain whitelisting in Android WebViews

A simple demo app that demonstrates:

Certificate pinning in Android WebViews
Scheme and domain whitelisting in Android WebViews

The pinning and whitelisting is achieved on network level with OkHttp. WebView is then secured by extending WebViewClient and using OkHttp for the requests.

The solution has a performance drawback: By extending WebViewClient and overriding shouldInterceptRequest, all requests are performed sequentially which hurts the loading times. Please let me know if there is a solution for this.

Name		Name	Last commit message	Last commit date
Latest commit History 10 Commits
app		app
gradle/wrapper		gradle/wrapper
.gitignore		.gitignore
README.md		README.md
build.gradle		build.gradle
gradle.properties		gradle.properties
gradlew		gradlew
gradlew.bat		gradlew.bat
settings.gradle		settings.gradle

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Certificate pinning and scheme/domain whitelisting in Android WebViews

A simple demo app that demonstrates:

About

Releases

Packages

Contributors 2

Languages

menjoo/Android-SSL-Pinning-WebViews

Folders and files

Latest commit

History

Repository files navigation

Certificate pinning and scheme/domain whitelisting in Android WebViews

A simple demo app that demonstrates:

About

Topics

Resources

Stars

Watchers

Forks

Releases

Packages 0

Contributors 2

Languages

Packages