dunno what’s wrong, i’m very busy at the moment. try getting the source of as3crypto (from my git) and compile it with that property set to true as default.
I have successfully connected to Google Talk (good news!), but with the following strange modifications:
in TLSEngine (line 816), the _config.ignoreCommonNameMismatch was always to false, so, like you said, I have hard coded the ignoreCommonNameMismatch to true in the TLSConfig file.
I must use domain=“gmail.com” instead of “googlemail.com” perhaps because my account is linked to two address (one in gmail.com and one in free.fr) else I receive an error.
So I think, I don’t have success to configure my TLSConfig. If you have time to check this point later…
Thanks for your help and for making Google Talk accessible from Flex
My new problem is that when I’m in my office desk, I’m behind a proxy. I have the following trace:
<?xml version="1.0" encoding="UTF-8"?>
<stream:stream from=“gmail.com” id=“011B96E2E321A9A6” version=“1.0” xmlns:stream=“http://etherx.jabber.org/streams” xmlns=“jabber:client”> stream:featuresX-GOOGLE-TOKEN< /mechanisms></stream:features>
Code:-1 The server is not configured to support any available SASL mechanisms
I was expecting rather to not get any answer. It look like yesterday the problem with the old version of as3crypto.
Is there a way to work with proxy (only host and port, no authentication) ?
I have tried to compile the as3crypto and the xiff library using the RFC2817Socket class and adding a setProxyInfo(…) each before the connect() but without succes.
I was using XMPPTLSConenction to connect to an Openfire server using TLS.
However, I kept getting the error : " Can not verify certificate"!.
Openfire generates self signed certificates, so I made config.trustselfsignedcertificates=true;
However the error persisted.
After some debugging, I found the error to be at Line 224 in XMPPTLSConnection.as, which did not send the TLSConfig object to startTLS(), which took default value as null and passed that to init() which created a new TLSConfig object, thereby ignoring my chage to config.trustSelfSignedCertificates.
The error can be resolved by simply changing line 224 to:
XIFF has been updated so that TLS is now successfully working to connect to Google Talk (at least in my tests) with the default classes in the trunk without any patches necessary for the end user.
Please test as well, these updates will be included in the 3.0.1 release.
Note: When connecting with Google Talk, you will need to ignore common name mismatches in the config.
Example code:
var connection:XMPPTLSConnection = new XMPPTLSConnection();
var config:TLSConfig = new TLSConfig( TLSEngine.CLIENT );
config.ignoreCommonNameMismatch = true;
connection.config = config;