Chat freely about anything...

User avatar
By oOHenry
#76603 Hello everyone,

I am trying to understand the TLS verify of the this example: https://github.com/esp8266/Arduino/blob/master/libraries/ESP8266WiFi/examples/HTTPSRequest/HTTPSRequest.ino#L30

Do I understand it right that every time the server renews his certificate, I need to find out the new fingerprint and adjust the fingerprint in the code? Or do I have to change the fingerprint only if it is a completely new cert?

Thanks in advance,
Henry
User avatar
By Cosmic Mac
#76617 Unfortunately, a certificate renewal means a new fingerprint.
If you don't want to update the fingerprint in your code every year (worst case), and don't care about verifying the server identity, then just omit the client.verify call.

It all depends on the service you access, and the criticality of the information you send.

Some useful information here: https://github.com/esp8266/Arduino/issues/3417