Every time Fiddler encounters a certificate error it prompts me on whether to ignore the error and proceed or not.
I know I can go into Tools --> Options --> HTTPS --> and check Ignore Server Certificate errors (unsafe) - but that is the opposite of what I want to do.
I want to NOT proceed for all certificate errors without being prompted. Is there a way to accomplish this?
For various reasons in our environment I encounter a lot of certificate errors and I never want to proceed on them and clicking "No" through dozens of ignore certificate error? is tiresome.
3 Answers, 1 is accepted
You could use the FiddlerScript to attach to the FiddlerApplication.OnValidateServerCertificate event.
For example, in the Main method of your FiddlerScript you could add the following code:
FiddlerApplication.OnValidateServerCertificate += (sender, ea) =>{ if(ea.CertificatePolicyErrors != SslPolicyErrors.None) { ea.ValidityState = CertificateValidity.ForceInvalid; }};This is just an example how to set the ValidityState. Of course, you could use your own business rules for this.
Regards,
Simeon
Progress Telerik
Rank 1
Rank 1
If you are in the fiddler script window, you want:
static function ValidateCert(sender, ea: ValidateServerCertificateEventArgs)
{
if(ea.CertificatePolicyErrors != System.Net.Security.SslPolicyErrors.None)
{
ea.ValidityState = CertificateValidity.ForceInvalid;
}
}
static function Main() {
...
FiddlerApplication.add_OnValidateServerCertificate(ValidateCert);
}