Standalone Web App - NO internet - using SSL

  1. 4 months ago

    Olivier C

    Apr 8 Pre-Release Testers, Xojo Pro Europe (Belgium, France)
    Edited 4 months ago

    Hi,

    I have a Xojo Standalone Web App, running on a Windows PC (Win 10).
    The clients are all Android Tablets, running the app in full screen with Chrome, using the Windows10 IP Address and port for connection.
    There is no internet connection, no web server in the LAN.

    The problem is the warnings received on the tablets because using http rather than https.

    I don’t succeed creating a self-signed certificate accepted by the Android Chrome browser.

    I tried with the Xojo sample Web Standalone SSL app but with no luck.

    Has anyone an idea or a solution ?

    Thanks,

    Olivier

  2. brian f

    Apr 8 Pre-Release Testers, Xojo Pro Chilly California

    We have an EAM (emergency action message) that was cut off during transmission

    Just letting you know that somehow your post got cut off and I'm sure you had more info to provide

  3. Olivier C

    Apr 8 Pre-Release Testers, Xojo Pro Europe (Belgium, France)

    Thanks @brian f , I was thrown out. I could complete my post.

  4. brian f

    Apr 8 Pre-Release Testers, Xojo Pro Chilly California

    Ah ok

    I just wanted to make sure you got a chance to know and finish so you can get help :)

  5. Jérôme L

    Apr 8 Pre-Release Testers, Xojo Pro Europe (France, Nantes)
    Edited 4 months ago

    If you want to deploy ssl certificate (free certificate let's encrypt) on windows 10 use "win-acme"

    See this video to deploy xojo web apps with IIS and reverse proxy option.

    That's works perfectly on my personal server.

  6. Olivier C

    Apr 8 Pre-Release Testers, Xojo Pro Europe (Belgium, France)

    @Jérôme Leray If you want to deploy ssl certificate (free certificate let's encrypt) on windows 10 use "win-acme"

    Thanks Jérôme. Installing IIS was easy. However I don’t see how to solve my problem completely.
    The video explains how to install the self-signed certificate in IIS and to connect to the local server in https. That’s what I did.
    But I still get a warning in Chrome because of the self signed certificate.
    I can live with it but the warning message is worrying my client and the end users working on the tablets.

    AFAIK Let’s encrypt is for named domains, did you succeed in creating one for a local domain ?

  7. brian f

    Apr 8 Pre-Release Testers, Xojo Pro Chilly California

    @Olivier C ,

    I believe you will always get the error with chrome using a self signed cert as the cert has not been issued by a 3rd party authority.

    And yes from my experience Lets Encrypt is for named domains

  8. Kevin W

    Apr 8 Pre-Release Testers, Xojo Pro

    If you want to use a self signed cert and get rid of the error message you need to install the cert on each device that uses the site. Another option would be to install your certificate authority's cert on each device then any new certs would be trusted.

    It's usually easier to just set up let's encrypt and a domain name so you can install the cert that way and not have to mess with the individual devices.

  9. Mark S

    Apr 8 Pre-Release Testers, Xojo Pro, XDC Speakers

    You might also want to consider the open source version of NGINX. There are some threads here about NGINX. NGINX can manage your certificates in front of the Xojo Web App and give you some other features. IIS would not be needed. It is also VERY light weight and you configure it with a simple text file.

    It is not a Web Server (although I think it can be) but can act as as reverse proxy. You can put NGINX on your "public" (internal) IP and then run the Xojo Standalone Web server on any IP and Port you want. It can also do load balancing if you want.

    You can also use the open source NSSM (Non-Sucking-Service-Manager) to launch the Xojo app and run as a service.

    Everything can be configured to survive an unattended reboot.

    Just a thought.

  10. Olivier C

    Apr 9 Pre-Release Testers, Xojo Pro Europe (Belgium, France)

    Many thanks to all of you.
    All suggestions are interesting and could be investigated, but none of them is really easy for the size and benefits of this special app.
    This application is running in a remote located building, with no internet connection. The server is a small Windows10 desktop and the clients are a dozen Android tablets. The single and only app needed is this Xojo web app.

    I’m actually testing and very simple workaround by using a « Kiosk » application (Fully Kiosk Browser) which seems to solve the problem and provides better control on authorised apps.
    When running the app (full screen or not) within the Kiosk, I don't get any annoying messages about security.
    This kiosk app uses the chrome engine and seems to work perfectly with my xojo web app.

    I’ll let you know if some other problem appears.

    Thanks anyway for your answers.

  11. Ercole G

    Apr 10 Pre-Release Testers, Xojo Pro

    Hi Olivier,
    please, could you tell me more about your kiosk app solution ? How to do it ?
    I've have the same your problem in the same situation too.

    Thanks

  12. Markus W

    Apr 10 Pre-Release Testers #JeSuisHuman New Zealand, Auc...

    I’d be curious too.

  13. Olivier C

    Apr 10 Pre-Release Testers, Xojo Pro Europe (Belgium, France)

    Hi @Markus W & @Ercole G,

    It's quite simple ;-)
    The web app is developed as standalone (Xojo 2017v2.1) and runs on a small Win10 PC, listening a port.
    Clients are Android tablets (Huawei T5).
    Small LAN, no internet connection.

    On each table I installed the kiosk app Fully Kiosk Browser (via google play).
    In Fully Kiosk settings I specify my Win10 IP http://address:port as "start URL", and voilà ! The web page is displayed full screen, no annoying message about insecure url.
    No status bar, no address bar, ...

    Fully Kiosk is using Android Webview (Chromium) and seems to be fully compatible with the Xojo web apps.

    For some tablets, placed in public areas, I bought the "Plus" license to make it impossible to quit the Web App without knowing a PIN code.
    The Plus license is 5.90€ per device, taxes included, volume licenses available (> 10 devices).

    I'm using Bluestacks (Win & Mac) Android emulator. It's free and it lets you install Fully Kiosk via google play to test all features (including "PLUS") before buying.

    Bluestacks is really performant, installing Fully Kiosk is easy.

    Using Bluestacks I could test all Fully Kiosk PLUS features without buying a license and without annoying message or watermark.
    On the real devices, there are big watermarks if you use PLUS features without buying the license.

    If you need more details tell me.

  14. Markus W

    Apr 10 Pre-Release Testers #JeSuisHuman New Zealand, Auc...

    Thanks - much appreciated :)

  15. Ercole G

    Apr 10 Pre-Release Testers, Xojo Pro

    Thans Olivier

or Sign Up to reply!