-
Notifications
You must be signed in to change notification settings - Fork 94
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Ability to ignore hosts based on CONNECT request. #32
Comments
I have used a number of HttpProxyServer instances, some transparent, some MITM to redirect traffic based on hostname. Using the ChainedProxyManager i can get it to work. So my transparent proxy runs on 8080 and the MITM on 8081 and some hostnames are chained to FALLBACK_TO_DIRECT_CONNECTION, while others are passed to 8081 using the ChainedProxyAdapter. Still i would like to ignore hosts from consideration. So some hosts should be considered as transparent. But other hosts can be filtered. |
I'm using this method |
Hello,
I have implemented the MITM as your example shows.
I have implemented a HttpFiltersSourceAdapter that has the method filterRequest.
I was hoping that returning null from the method would stop the filtering for certain hosts like appl/facebook. But i think the impersonation phase is still used when exchanging certificates.
How do I ignore hosts for use with apps that do their own SSL handshaking?
I have tried to make an alternative to the CertificateSniffing MitmManager. But i could not find a way to avoid returning a SSLEngine and thus skipping the interference.
So for some domains i would like the proxy to act as transparent.
The text was updated successfully, but these errors were encountered: