You can, on most screens, if you call the SetCertificatesFile() method of the ifHttpAgent interface. It's no different than requesting https URLs with the roUrlTransfer.

"TheEndless" wrote:
You can, on most screens, if you call the SetCertificatesFile() method of the ifHttpAgent interface. It's no different than requesting https URLs with the roUrlTransfer.

Oh, it works if i do that! Thank you, that's a precious bit of information you gave,

Why can't ifHttpAgent ensure that a (system) default certificate set is used if not overridden by user? I never had to manually add certificate chain in other programming environments.

Also why can't this be documented in a place where someone will read it? An enlightened* one can say "it's documented under ifHttpAgent.SetCertificatesFile and further clarified with example in roUrlTransfer"** - but that reminds me a passage of beloved book:

"HHGTTG" wrote:

“But Mr. Dent, the plans have been available in the local planning office for the last nine months.”

“Oh yes, well, as soon as I heard I went straight round to see them, yesterday afternoon. You hadn’t exactly gone out of your way to call attention to them, had you? I mean, like actually telling anybody or anything.”

“But the plans were on display . . .”

“On display? I eventually had to go down to the cellar to find them.”

“That’s the display department.”

“With a flashlight.”

“Ah, well, the lights had probably gone.”

“So had the stairs.”

“But look, you found the notice, didn’t you?”

“Yes,” said Arthur, “yes I did. It was on display in the bottom of a locked filing cabinet stuck in a disused lavatory with a sign on the door saying ‘Beware of the Leopard.’”

(*) Hindsight is always 20/20 - or better.
(**) there is also a second example of SetCertificatesFile use, which is "hidden" (does not show in Confluence's own search). Finding it is left as exercise to readers that have mastered Google search

"EnTerr" wrote:
Why can't ifHttpAgent ensure that a (system) default certificate set is used if not overridden by user? I never had to manually add certificate chain in other programming environments.

That, my friend, is a very good question. My framework/utility functions always add the default certificate (with an override as a parameter) for precisely this reason. What's more annoying is that it's not supported on all screen types (I'm looking at you roGridScreen) or components (I'm looking at you roTextureRequest)... requiring you to download the images to tmp: first to work around it.

EDIT: Oops, my mistake. roTextureRequest does support SetCertificatesFile. It doesn't, however, support EnablePeerVerification like roUrlTransfer, which is what has caused me much grief recently. It'd be nice if they moved all of the certificate specific methods to the ifHttpAgent interface, so they could be used anywhere certificates might need to be specified.