gui: allow to connect to an electrum server w/ a self signed certificate #1500
Conversation
|
In the GUI, could we add a "Use SSL" checkbox (related #1291), which, if selected, would then show the "validate domain" checkbox? If SSL is not required, then I feel it would be better not to show the validate option if it's not applicable. Related to this, I wonder if we should use an enum in |
|
As we were discussing, let's have for now the validation checkbox (which I would phrase as "Do not validate SSL Domain (check this only if you want to use a self-signed certificate)") only if the user uses ssl in the address. |
pythcoiner
force-pushed
the
electrum_self_signed_certificate
branch
from
78de446 to
3d90d40
Compare
|
the checkbox is now only displayed if the address is valid and contains "ssl://" |
i think this can be done in a follow-up if we decide to add a checkbox for enable/disable ssl instead prepending it to the address. |
OK yep, let's save that for a follow-up. We could probably keep the value saved in the config file as "ssl://..." and just change how it's parsed into For this present PR, I think you'll need to make |
i think having a default as true can avoid footgun and make sense, as it's the default value of the bdk electrum client, see here |
Ah I see, and so this is also the value we've implicitly been using for SSL connections so far. I agree we can default to true then (also for the GUI checkbox). |
the checkbox follow the default, but checked mean "do NOT validate", so it's unchecked as default |
That sounds good then. I think it just remains to make |
pythcoiner
force-pushed
the
electrum_self_signed_certificate
branch
from
3d90d40 to
a6f6614
Compare
i've implemented default deserialization |
| @@ -81,6 +81,7 @@ pub enum DefineBitcoind { | |||
| #[derive(Debug, Clone)] | |||
| pub enum DefineElectrum { | |||
| ConfigFieldEdited(electrum::ConfigField, String), | |||
| ValidDomainChanged(bool), | |||
There was a problem hiding this comment.
As validate_domain is part of the config, I feel that this should somehow also be part of ConfigFieldEdited. Perhaps you can use something like ConfigFieldEdited(electrum::ConfigFieldValue) where ConfigFieldValue is:
pub enum ConfigFieldValue {
Address(String),
ValidateDomain(bool),
}
There was a problem hiding this comment.
ValidDomainChanged(true) is shorter than
ConfigFieldEdited(electrum::ConfigFieldValue(electrum::ConfigFieldValue::ValidateDomain(bool)))
the event system of iced is already overwhelming imho, we should avoid "overwrapping" it only make the codebase less readable & more error prone
There was a problem hiding this comment.
Wouldn't it be just ConfigFieldEdited(electrum::ConfigFieldValue::ValidateDomain(bool))?
And by removing electrum:: it would be just ConfigFieldEdited(ConfigFieldValue::ValidateDomain(bool)).
It doesn't seem too bad, but we can leave it for now. If we have a separate message per field, then we should at some point change ConfigFieldEdited to AddressEdited.
There was a problem hiding this comment.
at this point of the release cycle i'd like to bring this PR quickly to a mergeable state or put it on hold: to avoid everyone testing under the christmas tree 😄
There was a problem hiding this comment.
That's OK, I meant it as something to consider in the future.
pythcoiner
force-pushed
the
electrum_self_signed_certificate
branch
from
a6f6614 to
b122f89
Compare
|
It would be good to add some comments to https://github.com/wizardsardine/liana/blob/master/contrib/lianad_config_example.toml about the new field. |
pythcoiner
force-pushed
the
electrum_self_signed_certificate
branch
from
b122f89 to
fe5c9d2
Compare
adressed, feel free if you have better wording |
pythcoiner
force-pushed
the
electrum_self_signed_certificate
branch
from
fe5c9d2 to
a968224
Compare
rebsed & addressed comments |
pythcoiner
force-pushed
the
electrum_self_signed_certificate
branch
from
a968224 to
6d82217
Compare
|
In the case that SSL is being used, should we show in the read-only settings view a line to indicate whether
|
no strong opinion, ping @nondiremanuel |
|
looks like CI failing on windows because missing openssl dependency... |
pythcoiner
force-pushed
the
electrum_self_signed_certificate
branch
3 times, most recently
from
3bf45ed to
feff005
Compare
pythcoiner
force-pushed
the
electrum_self_signed_certificate
branch
2 times, most recently
from
bd4cba8 to
5e5e65e
Compare
|
5e5e65e seems to fix windows CI |
It's not required at this stage imho. |
pythcoiner
force-pushed
the
electrum_self_signed_certificate
branch
from
5e5e65e to
1d9a896
Compare
pythcoiner
force-pushed
the
electrum_self_signed_certificate
branch
from
1d9a896 to
3083553
Compare
|
comments addressed |
closes #1300
The issue about connecting to an electrum certificate using
rustlshave been fixed upstream but in order to beneficiate from it we have to updatebdk_electrumandrust-bitvoindependencies.Meanwhile, this PR introduce a workaround: the initial issue is related to
electrum-clientuse-rustlsfeature anduse-opensslfeature is not reexported bybdk_electrumbut we can useelectrum-clientcrate directly and useuse-opensslfeature by this way:electrum-clientdirectly w/use-opensslvalidate_domainvalues inSettingsmenu.Note: ssl://testnet.aranguren.org:51002 electrum server can be used to test this PR