ars/iiEsaywebUIapp
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: add tls override for websockets incase of self signed certs

Browse Source
This commit is contained in:
cogwheel0
2025-10-11 16:17:35 +05:30
parent e166a05af1
commit 7d4aca1944
7 changed files with 90 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
lib/core/models/model.dart
View File

@@ -114,7 +114,8 @@ sealed class Model with _$Model {
// Extract toolIds from info.meta.toolIds (OpenWebUI format) // Extract toolIds from info.meta.toolIds (OpenWebUI format)
List<String>? toolIds; List<String>? toolIds;
final infoMeta = (infoSection?['meta'] as Map<String, dynamic>?) ?? final infoMeta =
(infoSection?['meta'] as Map<String, dynamic>?) ??
(metaSection) ?? (metaSection) ??
(mergedMetadata['meta'] as Map<String, dynamic>?); (mergedMetadata['meta'] as Map<String, dynamic>?);
if (infoMeta != null) { if (infoMeta != null) {

3
lib/core/services/background_streaming_handler.dart
View File

@@ -26,7 +26,8 @@ class BackgroundStreamingHandler {
// Callbacks for platform-specific events // Callbacks for platform-specific events
void Function(List<String> streamIds)? onStreamsSuspending; void Function(List<String> streamIds)? onStreamsSuspending;
void Function()? onBackgroundTaskExpiring; void Function()? onBackgroundTaskExpiring;
void Function(List<String> streamIds, int estimatedSeconds)? onBackgroundTaskExtended; void Function(List<String> streamIds, int estimatedSeconds)?
onBackgroundTaskExtended;
void Function()? onBackgroundKeepAlive; void Function()? onBackgroundKeepAlive;
bool Function()? shouldContinueInBackground; bool Function()? shouldContinueInBackground;

3
lib/core/services/persistent_streaming_service.dart
View File

@@ -62,7 +62,8 @@ class PersistentStreamingService with WidgetsBindingObserver {
_saveStreamStatesForRecovery(); _saveStreamStatesForRecovery();
}; };
_backgroundHandler.onBackgroundTaskExtended = (streamIds, estimatedSeconds) { _backgroundHandler
.onBackgroundTaskExtended = (streamIds, estimatedSeconds) {
DebugLogger.stream( DebugLogger.stream(
'PersistentStreaming: Background task extended for $estimatedSeconds seconds', 'PersistentStreaming: Background task extended for $estimatedSeconds seconds',
); );

7
lib/core/services/socket_service.dart
View File

@@ -3,6 +3,7 @@ import 'package:socket_io_client/socket_io_client.dart' as io;
import '../models/server_config.dart'; import '../models/server_config.dart';
import '../utils/debug_logger.dart'; import '../utils/debug_logger.dart';
import 'socket_tls_override.dart';
typedef SocketChatEventHandler = typedef SocketChatEventHandler =
void Function( void Function(
@@ -120,7 +121,11 @@ class SocketService with WidgetsBindingObserver {
builder.setExtraHeaders(extraHeaders); builder.setExtraHeaders(extraHeaders);
} }
_socket = io.io(base, builder.build()); _socket = createSocketWithOptionalBadCertOverride(
base,
builder,
serverConfig,
);
_bindCoreSocketHandlers(); _bindCoreSocketHandlers();
} }

12
lib/core/services/socket_tls_override.dart Normal file
View File

@@ -0,0 +1,12 @@
import 'package:socket_io_client/socket_io_client.dart' as io;
import '../models/server_config.dart';
import 'socket_tls_override_impl_stub.dart'
if (dart.library.io) 'socket_tls_override_impl_io.dart'
as impl;
io.Socket createSocketWithOptionalBadCertOverride(
String base,
io.OptionBuilder builder,
ServerConfig serverConfig,
) => impl.createSocketWithOptionalBadCertOverride(base, builder, serverConfig);

54
lib/core/services/socket_tls_override_impl_io.dart Normal file
View File

@@ -0,0 +1,54 @@
import 'dart:io'
show HttpOverrides, SecurityContext, HttpClient, X509Certificate;
import 'package:socket_io_client/socket_io_client.dart' as io;
import '../models/server_config.dart';
io.Socket createSocketWithOptionalBadCertOverride(
String base,
io.OptionBuilder builder,
ServerConfig serverConfig,
) {
if (!serverConfig.allowSelfSignedCertificates) {
return io.io(base, builder.build());
}
final target = _tryParseUri(base);
if (target == null || !(target.scheme == 'https' || target.scheme == 'wss')) {
return io.io(base, builder.build());
}
final host = target.host.toLowerCase();
final port = target.hasPort ? target.port : null;
return HttpOverrides.runWithHttpOverrides<io.Socket>(
() => io.io(base, builder.build()),
_ScopedBadCertOverrides(host: host, port: port),
);
}
Uri? _tryParseUri(String url) {
try {
final parsed = Uri.parse(url);
if (parsed.hasScheme) return parsed;
} catch (_) {}
return null;
}
class _ScopedBadCertOverrides extends HttpOverrides {
_ScopedBadCertOverrides({required this.host, this.port});
final String host;
final int? port;
@override
HttpClient createHttpClient(SecurityContext? context) {
final client = super.createHttpClient(context);
client.badCertificateCallback =
(X509Certificate cert, String requestHost, int requestPort) {
if (requestHost.toLowerCase() != host) return false;
if (port == null) return true;
return requestPort == port;
};
return client;
}
}

12
lib/core/services/socket_tls_override_impl_stub.dart Normal file
View File

@@ -0,0 +1,12 @@
import 'package:socket_io_client/socket_io_client.dart' as io;
import '../models/server_config.dart';
io.Socket createSocketWithOptionalBadCertOverride(
String base,
io.OptionBuilder builder,
ServerConfig serverConfig,
) {
// Web and other non-IO platforms: no TLS override possible/needed
return io.io(base, builder.build());
}