From 921ea4962ea41e9db456a044733e5be1676d128a Mon Sep 17 00:00:00 2001
From: Ben Greear <greearb@candelatech.com>
Date: Fri, 7 Feb 2020 01:10:16 -0800
Subject: [PATCH] hs20-osu-client: Ignore TLS errors with webkit2

Hopefully this helps with self-signed certificates. This matches the
older behavior with webkit.

Signed-off-by: Ben Greear <greearb@candelatech.com>
---
 src/utils/browser.c | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/src/utils/browser.c b/src/utils/browser.c
index 43d47dca3..504523625 100644
--- a/src/utils/browser.c
+++ b/src/utils/browser.c
@@ -213,6 +213,7 @@ int hs20_web_browser(const char *url)
 	WebKitWebView *view;
 #ifdef USE_WEBKIT2
 	WebKitSettings *settings;
+	WebKitWebContext *wkctx;
 #else /* USE_WEBKIT2 */
 	WebKitWebSettings *settings;
 	SoupSession *s;
@@ -284,6 +285,12 @@ int hs20_web_browser(const char *url)
 		     "hs20-client/1.0", NULL);
 	g_object_set(G_OBJECT(settings), "auto-load-images", TRUE, NULL);
 
+#ifdef USE_WEBKIT2
+	wkctx = webkit_web_context_get_default();
+	webkit_web_context_set_tls_errors_policy(
+		wkctx, WEBKIT_TLS_ERRORS_POLICY_IGNORE);
+#endif /* USE_WEBKIT2 */
+
 	webkit_web_view_load_uri(view, url);
 
 	gtk_main();