cyan flame
I am working since two hours on getting HA working with the Android app, but the app always complains about an untrusted cert. The server setup looks the following: hass.homelab.local -> NGINX -> HA-Core and I created the cert of the server with mkcert (mkcert hass.homelab.local 192.168.0.225) and already installed the corresponding CA cert on my Android device through the recommended way (Settings>Security>Encryption>Install a certificate>CA-Certificate). I have already tried different ways to create the certs and also completely bypassed NGINX by configuring HA to use HTTPS and just using the standard port, but all of that with no luck. Added to that if I use my browser on the android device to navigate to the page it does not complain about any problem with the cert and just says it's valid (I did not add it to the browser manually just through the described way), so I really don't know what I am doing wrong or where the issue might be. Any help would be appreciated!
Edit 1: just looked through the logs of my Android device and found this, but it doesn't give me any more information...
12-15 17:31:37.923 23624 23737 E chromium: [ERROR:ssl_client_socket_impl.cc(910)] handshake failed; returned -1, SSL error code 1, net_error -202
12-15 17:31:37.940 23624 23624 E WebviewActivity: onReceivedSslError: primary error: 3 certificate: Issued to: OU=nas@localhost.localdomain,O=mkcert development certificate;
12-15 17:31:37.940 23624 23624 E WebviewActivity: Issued by: CN=mkcert nas@localhost.localdomain,OU=nas@localhost.localdomain,O=mkcert development CA;
12-15 17:31:37.940 23624 23624 E WebviewActivity: on URL: https://hass.homelab.local/?external_auth=1
Edit 2: It somehow works flawlessly on my tablet, just not on my phone... no clue why...
signal sonnet
mortal magnet