The forum for BriskBard users and CEF4Delphi / WebView4Delphi / WebUI4Delphi / WebUI4CSharp developers
https://www.briskbard.com/forum/
https://magpcss.org/ceforum/apidocs3/projects/(default)/CefRequestHandler.html#OnSelectClientCertificate(CefRefPtr%3CCefBrowser%3E,bool,constCefString&,int,constX509CertificateList&,CefRefPtr%3CCefSelectClientCertificateCallback%3E)Called on the UI thread when a client certificate is being requested for authentication. Return false to use the default behavior and automatically select the first certificate available. Return true and call CefSelectClientCertificateCallback::Select either in this method or at a later time to select a certificate. Do not call Select or call it with NULL to continue without using any certificate. |isProxy| indicates whether the host is an HTTPS proxy or the origin server. |host| and |port| contains the hostname and port of the SSL server. |certificates| is the list of certificates to choose from; this list has already been pruned by Chromium so that it only contains certificates from issuers that the server trusts.
1salvadordf wrote: Wed Mar 09, 2022 6:17 pm Hi,
If a web page requires user authentication using a certificate then Chromium will trigger the TChromium.OnSelectClientCertificate event with an array of certificates that can be used to authenticate the user in that page.
This is what the CEF documents say about that event :https://magpcss.org/ceforum/apidocs3/projects/(default)/CefRequestHandler.html#OnSelectClientCertificate(CefRefPtr%3CCefBrowser%3E,bool,constCefString&,int,constX509CertificateList&,CefRefPtr%3CCefSelectClientCertificateCallback%3E)Called on the UI thread when a client certificate is being requested for authentication. Return false to use the default behavior and automatically select the first certificate available. Return true and call CefSelectClientCertificateCallback::Select either in this method or at a later time to select a certificate. Do not call Select or call it with NULL to continue without using any certificate. |isProxy| indicates whether the host is an HTTPS proxy or the origin server. |host| and |port| contains the hostname and port of the SSL server. |certificates| is the list of certificates to choose from; this list has already been pruned by Chromium so that it only contains certificates from issuers that the server trusts.
If your application doesn't use that event then Chromium will use the first certificate available, if any.
If your application uses that event and sets Result to True then you can call callback.select with one of the certificates available in the "certificates" array.
If Chrome and CEF show different certificates then compare the versions of Chrome and Chromium in CEF.
http://www.nfe.fazenda.gov.br/portal/consultaRecaptcha.aspx?tipoConsulta=resumo&tipoConteudo=7PhJ+gAVw2g=salvadordf wrote: Sat Mar 12, 2022 1:44 pm CEF only allows to select user certificates when a web page requires them, not before.
Well, on other pages it reads correctly, but on this one in particular, I don't know what to do...salvadordf wrote: Sat Mar 12, 2022 2:54 pm I can't test that page but I just tried to access a government page in Spain using one of my certificates and it worked correctly.
Try to open that page using BriskBard :
https://www.briskbard.com/index.php?lang=en&pageid=download
BriskBard uses CEF by default and it implements all necessary CEF events to authenticate the user.
It worked out! Thank you!salvadordf wrote: Sat Mar 12, 2022 4:11 pm There is an unresolved issue in CEF with NTLM authentication :
https://bitbucket.org/chromiumembedded/cef/issues/3110/ntlm-authenentication-not-working
Perhaps that page is using that authentication method.
Try setting GlobalCEFApp.DisableRequestHandlingForTesting to TRUE before the GlobalCEFApp.StartMainProcess call in the DPR file.
Some people in that issue say that a possible workaround is using a proxy. See the MiniBrowser demo to know how to use a proxy in CEF.