Google Git
Sign in
android / platform / packages / apps / Exchange / 6317202^! / .
commit631720238b2949cec6a0f140623505efb6699619[log] [tgz]
authorAndrew Stadler <stadler@android.com>Tue Sep 29 15:28:43 2009 -0700
committerAndrew Stadler <stadler@android.com>Tue Sep 29 15:28:43 2009 -0700
tree7f1c0e36ad209a4e08b8c8798ddac8e120bec4ec
parent2033dfc4e2e6e352b34565112266084d72c443f1 [diff]
Re-enable modernized version of "optional" SSL/TLS

* Add "Accept all certificates" modes to incoming/outgoing secure choices
* Change URI scheme slightly to make "trust" a flag, not part of the
    protocol.
* Change Stores to know about new URI scheme
* Slightly rework Transport API to make "trust" an independent flag
* Adapt HostAuth to handle new Uri scheme
* Remove the old ambiguous "optional" code, which was allowing
    some unsigned certificates, but was *also* allowing TLS to
    optionally start (though not SSL, despite the UI strings.)
* Add a few unit tests to EmailContent
* Add logging and a bunch of comments to TrustManagerFactory, and a bit
    of simple cleanup to make it more readable.
* Add missing conversion of SSLException->CertificateValidationException
    in TLS so we get the correct certificate errors from TLS too.
* Re-enable TLS for mac.com accounts (which had a certificate problem)

Fixes bug http://b/2119755, http://b/1374780, and probably a raft of
earlier and/or external bugs about certificate problems.

Change-Id: Iaf99a8da3eaadaa4cdeec224737838b5d6813e55

diff --git a/res/values/strings.xml b/res/values/strings.xml
index b2c77cd..ba2a9e0 100644
--- a/res/values/strings.xml
+++ b/res/values/strings.xml

@@ -32,7 +32,10 @@
     <string name="special_mailbox_display_name_sent"></string>
     <!-- Do Not Translate.  Unused string. -->
     <string name="special_mailbox_display_name_junk"></string>
-
+    <!-- Do Not Translate.  Unused string. -->
+    <string name="account_setup_incoming_security_ssl_optional_label"></string>
+    <!-- Do Not Translate.  Unused string. -->
+    <string name="account_setup_incoming_security_tls_optional_label"></string>
 
     <!-- Permissions label for reading attachments -->
     <string name="read_attachment_label">Read Email attachments</string>
@@ -362,13 +365,13 @@
     <!-- "Incoming server settings" screen, options for "Security type" pop-up menu -->
     <string name="account_setup_incoming_security_none_label">None</string>
     <!-- "Incoming server settings" screen, options for "Security type" pop-up menu -->
-    <string name="account_setup_incoming_security_ssl_optional_label">SSL (if available)</string>
+    <string name="account_setup_incoming_security_ssl_trust_certificates_label">SSL (Accept all certificates)</string>
     <!-- "Incoming server settings" screen, options for "Security type" pop-up menu -->
-    <string name="account_setup_incoming_security_ssl_label">SSL (always)</string>
+    <string name="account_setup_incoming_security_ssl_label">SSL</string>
     <!-- "Incoming server settings" screen, options for "Security type" pop-up menu -->
-    <string name="account_setup_incoming_security_tls_optional_label">TLS (if available)</string>
+    <string name="account_setup_incoming_security_tls_trust_certificates_label">TLS (Accept all certificates)</string>
     <!-- "Incoming server settings" screen, options for "Security type" pop-up menu -->
-    <string name="account_setup_incoming_security_tls_label">TLS (always)</string>
+    <string name="account_setup_incoming_security_tls_label">TLS</string>
     <!-- "Incoming server settings" screen, label for pop-up menu -->
     <string name="account_setup_incoming_delete_policy_label">Delete email from server</string>
     <!-- "Incoming server settings" screen, options in pop-up menu for Delete email from server: -->