<html>
  <head>
    <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
  </head>
  <body>
    <p>Jedine, co je, ze se odsouhlasi, ze protistrana je dany server
      bez kontroly a prepne se do daneho sifrovani. Tim to neni bezpecne
      .... , ale tvari se jako S. Proto nevyhnutelne vetsina low power
      protokolu vede k tomu, ze si nahrajete nejaky klic(heslo) do
      zarizeni a do serveru, aby jste tuto identifikaci opustil a
      zjednodusil cely proces, pote opustite i to httpS a sifrujete
      aplikacne. Trosku si pomuzete, ale ne moc. Musite to stejne v
      aplikaci resit, ze klic je jen pro domluveni spojeni a dalsi
      komunikace je s dalsim domluvenym klicem, aby to nebylo
      napadnutelne. I v tom procesu overovani i kdyz mate klic to neni
      jednoduche, logicky nesmite dopustit predani dat takovym zpusobem,
      aby na druhe strane hrubou silou jednoduse poznali co je ok a co
      ne. Inspirace neco jako ssh.</p>
    <p>Jirka<br>
    </p>
    <div class="moz-cite-prefix">Dne 17.02.2023 v 14:31 Jan PĹŻhonĂ˝
      napsal(a):<br>
    </div>
    <blockquote type="cite"
cite="mid:CAEwSxSHayWH_mFZ7Y1=eKgF=nKwzKRxuKhEiNvdokcRFPMXGsg@mail.gmail.com">
      <meta http-equiv="content-type" content="text/html; charset=UTF-8">
      <div dir="ltr">DobrĂ© odpoledne, 
        <div><br>
        </div>
        <div>nevĂ­te nÄ›kdo o nÄ›jakĂ©m jednoduchĂ©m https klientovi pro
          ESP32? Zkoušel jsem nÄ›co jako:</div>
        <div><br>
        </div>
        <div><a
            href="https://randomnerdtutorials.com/esp32-https-requests/"
            moz-do-not-send="true" class="moz-txt-link-freetext">https://randomnerdtutorials.com/esp32-https-requests/</a><br>
        </div>
        <div>
          <pre class="gmail-language-c" style="border:0px;margin-top:0.5em;margin-bottom:20px;padding:1em;background:rgb(245,242,240);font-family:Consolas,Monaco,"Andale Mono","Ubuntu Mono",monospace;font-size:18px;line-height:1.5;overflow:auto;max-width:100%;color:rgb(0,0,0);word-break:normal;max-height:40em"><code class="gmail-language-c" style="border:0px;margin:0px;padding:0px;font-variant-numeric:normal;font-variant-east-asian:normal;font-stretch:normal;font-size:1em;line-height:1.5;font-family:Consolas,Monaco,"Andale Mono","Ubuntu Mono",monospace;background:0px 0px;word-spacing:normal;word-break:normal">Serial<span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">.</span><span class="gmail-token gmail-function" style="border:0px;margin:0px;padding:0px;color:rgb(221,74,104)">println</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">(</span><span class="gmail-token gmail-string" style="border:0px;margin:0px;padding:0px;color:rgb(102,153,0)">"\nStarting connection to server..."</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">)</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">;</span>
  <span class="gmail-token gmail-keyword" style="border:0px;margin:0px;padding:0px;color:rgb(0,119,170)">if</span> <span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">(</span><span class="gmail-token gmail-operator" style="border:0px;margin:0px;padding:0px;color:rgb(154,110,58);background:rgba(255,255,255,0.5)">!</span>client<span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">.</span><span class="gmail-token gmail-function" style="border:0px;margin:0px;padding:0px;color:rgb(221,74,104)">connect</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">(</span>server<span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">,</span> <span class="gmail-token gmail-number" style="border:0px;margin:0px;padding:0px;color:rgb(153,0,85)">443</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">)</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">)</span>
    Serial<span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">.</span><span class="gmail-token gmail-function" style="border:0px;margin:0px;padding:0px;color:rgb(221,74,104)">println</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">(</span><span class="gmail-token gmail-string" style="border:0px;margin:0px;padding:0px;color:rgb(102,153,0)">"Connection failed!"</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">)</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">;</span>
  <span class="gmail-token gmail-keyword" style="border:0px;margin:0px;padding:0px;color:rgb(0,119,170)">else</span> <span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">{</span>
    Serial<span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">.</span><span class="gmail-token gmail-function" style="border:0px;margin:0px;padding:0px;color:rgb(221,74,104)">println</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">(</span><span class="gmail-token gmail-string" style="border:0px;margin:0px;padding:0px;color:rgb(102,153,0)">"Connected to server!"</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">)</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">;</span>
    <span class="gmail-token gmail-comment" style="border:0px;margin:0px;padding:0px;list-style-type:none;color:rgb(112,128,144)">// Make a HTTP request:</span>
    client<span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">.</span><span class="gmail-token gmail-function" style="border:0px;margin:0px;padding:0px;color:rgb(221,74,104)">println</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">(</span><span class="gmail-token gmail-string" style="border:0px;margin:0px;padding:0px;color:rgb(102,153,0)">"GET <a href="https://www.howsmyssl.com/a/check" moz-do-not-send="true" class="moz-txt-link-freetext">https://www.howsmyssl.com/a/check</a> HTTP/1.0"</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">)</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">;</span>
    client<span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">.</span><span class="gmail-token gmail-function" style="border:0px;margin:0px;padding:0px;color:rgb(221,74,104)">println</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">(</span><span class="gmail-token gmail-string" style="border:0px;margin:0px;padding:0px;color:rgb(102,153,0)">"Host: <a href="http://www.howsmyssl.com" moz-do-not-send="true">www.howsmyssl.com</a>"</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">)</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">;</span>
    client<span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">.</span><span class="gmail-token gmail-function" style="border:0px;margin:0px;padding:0px;color:rgb(221,74,104)">println</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">(</span><span class="gmail-token gmail-string" style="border:0px;margin:0px;padding:0px;color:rgb(102,153,0)">"Connection: close"</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">)</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">;</span>
    client<span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">.</span><span class="gmail-token gmail-function" style="border:0px;margin:0px;padding:0px;color:rgb(221,74,104)">println</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">(</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">)</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">;</span>

    <span class="gmail-token gmail-keyword" style="border:0px;margin:0px;padding:0px;color:rgb(0,119,170)">while</span> <span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">(</span>client<span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">.</span><span class="gmail-token gmail-function" style="border:0px;margin:0px;padding:0px;color:rgb(221,74,104)">connected</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">(</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">)</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">)</span> <span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">{</span>
      String line <span class="gmail-token gmail-operator" style="border:0px;margin:0px;padding:0px;color:rgb(154,110,58);background:rgba(255,255,255,0.5)">=</span> client<span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">.</span><span class="gmail-token gmail-function" style="border:0px;margin:0px;padding:0px;color:rgb(221,74,104)">readStringUntil</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">(</span><span class="gmail-token gmail-string" style="border:0px;margin:0px;padding:0px;color:rgb(102,153,0)">'\n'</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">)</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">;</span>
      <span class="gmail-token gmail-keyword" style="border:0px;margin:0px;padding:0px;color:rgb(0,119,170)">if</span> <span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">(</span>line <span class="gmail-token gmail-operator" style="border:0px;margin:0px;padding:0px;color:rgb(154,110,58);background:rgba(255,255,255,0.5)">==</span> <span class="gmail-token gmail-string" style="border:0px;margin:0px;padding:0px;color:rgb(102,153,0)">"\r"</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">)</span> <span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">{</span>
        Serial<span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">.</span><span class="gmail-token gmail-function" style="border:0px;margin:0px;padding:0px;color:rgb(221,74,104)">println</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">(</span><span class="gmail-token gmail-string" style="border:0px;margin:0px;padding:0px;color:rgb(102,153,0)">"headers received"</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">)</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">;</span>
        <span class="gmail-token gmail-keyword" style="border:0px;margin:0px;padding:0px;color:rgb(0,119,170)">break</span><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">;</span>
      <span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">}</span>
    <span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">}</span></code></pre>
          <pre class="gmail-language-c" style="border:0px;margin-top:0.5em;margin-bottom:20px;padding:1em;background:rgb(245,242,240);font-family:Consolas,Monaco,"Andale Mono","Ubuntu Mono",monospace;font-size:18px;line-height:1.5;overflow:auto;max-width:100%;color:rgb(0,0,0);word-break:normal;max-height:40em"><code class="gmail-language-c" style="border:0px;margin:0px;padding:0px;font-variant-numeric:normal;font-variant-east-asian:normal;font-stretch:normal;font-size:1em;line-height:1.5;font-family:Consolas,Monaco,"Andale Mono","Ubuntu Mono",monospace;background:0px 0px;word-spacing:normal;word-break:normal"><span class="gmail-token gmail-punctuation" style="border:0px;margin:0px;padding:0px;color:rgb(153,153,153)">
</span></code></pre>
          <div>
            <div dir="ltr" class="gmail_signature"
              data-smartmail="gmail_signature">
              <div dir="ltr">
                <div dir="ltr">
                  <div>ale to mi pĹ™ipadá dost sloĹľitĂ© a nesmyslnĂ© takto
                    skládat http request. ChtÄ›l bych nÄ›co jako je
                    vestavÄ›nĂ˝ http client, ale pro https:</div>
                  <div><br>
                  </div>
                  <div>NÄ›jakĂ˝ takovĂ˝to jednoduvhĂ˝ zápis, ale pro https.</div>
                  <div>
                    <div style="color:rgb(212,212,212);background-color:rgb(30,30,30);font-family:Consolas,"Courier New",monospace;font-size:14px;line-height:19px;white-space:pre"><div><span style="color:rgb(78,201,176)">HTTPClient</span> <span style="color:rgb(156,220,254)">http</span>;</div><div>  Â  Â  Â  <span style="color:rgb(156,220,254)">http</span>.<span style="color:rgb(220,220,170)">setTimeout</span>(<span style="color:rgb(181,206,168)">3000</span>);<span style="color:rgb(106,153,85)"> // in ms</span></div><div>  Â  Â  Â  <span style="color:rgb(156,220,254)">http</span>.<span style="color:rgb(220,220,170)">begin</span>(<span style="color:rgb(156,220,254)">serverNameWeather</span>, <span style="color:rgb(156,220,254)">root_ca</span>);<span style="color:rgb(106,153,85)"> // HTTPS - certifikát nadefinován jako globálnĂ­ promÄ›nná Â  Â  Â  Â </span></div><div>  Â  Â  Â  <span style="color:rgb(86,156,214)">int</span> <span style="color:rgb(156,220,254)">httpCode</span> = <span style="color:rgb(156,220,254)">http</span>.<span style="color:rgb(220,220,170)">GET</span>();</div></div>
                  </div>
                  <div><br>
                  </div>
                  <div>NevĂ­te nÄ›kdo o něčem? PřípadnÄ› nedá se
                    ten  HTTPClient nÄ›jak bezpolestnÄ› znásilnit i na
                    https? Nezkoušel jste to nÄ›kdo?<br>
                  </div>
                  <div><br>
                  </div>
                  <div>DĂ­ky,</div>
                  <div><br>
                  </div>
                  <div>Honza PĹŻhonĂ˝</div>
                </div>
              </div>
            </div>
          </div>
        </div>
      </div>
      <br>
      <fieldset class="moz-mime-attachment-header"></fieldset>
      <pre class="moz-quote-pre" wrap="">_______________________________________________
HW-list mailing list  -  sponsored by <a class="moz-txt-link-abbreviated" href="http://www.HW.cz">www.HW.cz</a>
<a class="moz-txt-link-abbreviated" href="mailto:Hw-list@list.hw.cz">Hw-list@list.hw.cz</a>
<a class="moz-txt-link-freetext" href="http://list.hw.cz/mailman/listinfo/hw-list">http://list.hw.cz/mailman/listinfo/hw-list</a>
</pre>
    </blockquote>
  </body>
</html>