From 9d95a27ad0db82ce048fd5e4862421e7d6fa9e62 Mon Sep 17 00:00:00 2001
From: PliablePixels <pliablepixels@gmail.com>
Date: Thu, 25 Jun 2015 16:47:38 -0400
Subject: updated instructions for SSL configuration

---
 docs/SSL-Configuration.md | 48 +++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 48 insertions(+)
 create mode 100644 docs/SSL-Configuration.md

(limited to 'docs/SSL-Configuration.md')

diff --git a/docs/SSL-Configuration.md b/docs/SSL-Configuration.md
new file mode 100644
index 00000000..c3c06d8e
--- /dev/null
+++ b/docs/SSL-Configuration.md
@@ -0,0 +1,48 @@
+***SSL Configuration notes
+
+If your Zoneminder instance has SSL configured and you need zmNinja to connect to ZM over SSL you need to:
+
+1) Make sure you generate the certificates correctly
+2) Import the certificate into iOS and Android
+
+****Certificate generation
+
+*****Self-signed certificates
+
+If you are using self signed certificated, you should make sure the "common name" matches the hostname (or public IP)
+of the server you are installing ZM in. If not, zmNinja's SSL handshake will fail.
+
+If you have used 'make-ssl-cert' or a similar tool that automatically generates the cert for you, its very likely
+you have certificate that uses the 'unix hostname' of your server. That will not work.
+
+Assuming you are usin apache and have SSL enabled, here is how to regenerate the certs
+
+This will create a self-signed certificate/key pair and store it in /etc/apache2/ssl (you may have to create that directory, or store it elsewhere)
+
+```
+sudo openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout /etc/apache2/ssl/zoneminder.key -out /etc/apache2/ssl/zoneminder.crt
+```
+
+Next up, edit your apache ssl config (example /etc/apache2/sites-available/default-ssl.conf)
+And add/modify the following lines:
+
+```
+SSLCertificateFile /etc/apache2/ssl/zoneminder.crt
+SSLCertificateKeyFile /etc/apache2/ssl/zoneminder.key
+```
+
+restart apache
+
+```
+sudo service apache2 restart
+```
+
+
+Then, you need to install zoneminder.crt in your mobile devices so that zmNinja does not reject the certificate as it is self signed.
+The easiest way to do that is simply email it to yourself and open your email in the phone and install the attachment. Works for both
+iOS and Android. Make sure you install it and go through the prompts
+
+Once you are done with these steps, zmNinja should be able to connect to ZM via SSL. Make sure you select SSL in the settings
+
+*****CA signed certificates
+If  you purchase a signed certificate, or set up your own root CA zmNinja should just work over SSL. I haven't tried it so far.
-- 
cgit v1.2.3


From 1fe8b6ca69fe575bb3433502c8a179f3250264da Mon Sep 17 00:00:00 2001
From: PliablePixels <pliablepixels@gmail.com>
Date: Thu, 25 Jun 2015 16:50:43 -0400
Subject: SSL configuration instructions

---
 docs/SSL-Configuration.md | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

(limited to 'docs/SSL-Configuration.md')

diff --git a/docs/SSL-Configuration.md b/docs/SSL-Configuration.md
index c3c06d8e..36969289 100644
--- a/docs/SSL-Configuration.md
+++ b/docs/SSL-Configuration.md
@@ -1,13 +1,13 @@
-***SSL Configuration notes
+##SSL Configuration notes
 
 If your Zoneminder instance has SSL configured and you need zmNinja to connect to ZM over SSL you need to:
 
 1) Make sure you generate the certificates correctly
 2) Import the certificate into iOS and Android
 
-****Certificate generation
+###Certificate generation
 
-*****Self-signed certificates
+####Self-signed certificates
 
 If you are using self signed certificated, you should make sure the "common name" matches the hostname (or public IP)
 of the server you are installing ZM in. If not, zmNinja's SSL handshake will fail.
@@ -44,5 +44,5 @@ iOS and Android. Make sure you install it and go through the prompts
 
 Once you are done with these steps, zmNinja should be able to connect to ZM via SSL. Make sure you select SSL in the settings
 
-*****CA signed certificates
-If  you purchase a signed certificate, or set up your own root CA zmNinja should just work over SSL. I haven't tried it so far.
+####CA signed certificates
+If you purchase a signed certificate, or set up your own root CA zmNinja should just work over SSL. I haven't tried it so far.
-- 
cgit v1.2.3


From f6b5dcaaea5bc50f541187be9d1b5300cf153de6 Mon Sep 17 00:00:00 2001
From: PliablePixels <pliablepixels@gmail.com>
Date: Thu, 25 Jun 2015 19:34:54 -0400
Subject: SSL instructions

---
 docs/SSL-Configuration.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'docs/SSL-Configuration.md')

diff --git a/docs/SSL-Configuration.md b/docs/SSL-Configuration.md
index 36969289..9d1f53dc 100644
--- a/docs/SSL-Configuration.md
+++ b/docs/SSL-Configuration.md
@@ -37,7 +37,7 @@ restart apache
 sudo service apache2 restart
 ```
 
-
+####Install certificates (.cer) file in yout phone
 Then, you need to install zoneminder.crt in your mobile devices so that zmNinja does not reject the certificate as it is self signed.
 The easiest way to do that is simply email it to yourself and open your email in the phone and install the attachment. Works for both
 iOS and Android. Make sure you install it and go through the prompts
-- 
cgit v1.2.3


From 0d4d4f70c708a2ffeda3bf74d9c20426064d6be3 Mon Sep 17 00:00:00 2001
From: PliablePixels <pliablepixels@gmail.com>
Date: Thu, 25 Jun 2015 19:36:57 -0400
Subject: ssl instructions

---
 docs/SSL-Configuration.md | 1 +
 1 file changed, 1 insertion(+)

(limited to 'docs/SSL-Configuration.md')

diff --git a/docs/SSL-Configuration.md b/docs/SSL-Configuration.md
index 9d1f53dc..8a6f032d 100644
--- a/docs/SSL-Configuration.md
+++ b/docs/SSL-Configuration.md
@@ -41,6 +41,7 @@ sudo service apache2 restart
 Then, you need to install zoneminder.crt in your mobile devices so that zmNinja does not reject the certificate as it is self signed.
 The easiest way to do that is simply email it to yourself and open your email in the phone and install the attachment. Works for both
 iOS and Android. Make sure you install it and go through the prompts
+######Note: Just visiting your https site on mobile safari and "accepting the certificate" DOES NOT mean the certificate is installed in your phone. It simply sets up an exclusion on your browser that does not work for the UI webview inside your app
 
 Once you are done with these steps, zmNinja should be able to connect to ZM via SSL. Make sure you select SSL in the settings
 
-- 
cgit v1.2.3


From 83e2353a9de4f2ec707050f6d437f3afed79b183 Mon Sep 17 00:00:00 2001
From: PliablePixels <pliablepixels@gmail.com>
Date: Thu, 25 Jun 2015 19:59:28 -0400
Subject: ssl conf.

---
 docs/SSL-Configuration.md | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'docs/SSL-Configuration.md')

diff --git a/docs/SSL-Configuration.md b/docs/SSL-Configuration.md
index 8a6f032d..7fec9763 100644
--- a/docs/SSL-Configuration.md
+++ b/docs/SSL-Configuration.md
@@ -3,8 +3,10 @@
 If your Zoneminder instance has SSL configured and you need zmNinja to connect to ZM over SSL you need to:
 
 1) Make sure you generate the certificates correctly
+
 2) Import the certificate into iOS and Android
 
+
 ###Certificate generation
 
 ####Self-signed certificates
-- 
cgit v1.2.3


From c1fd01ef1f624cc7f6419464c2633b797e50b31f Mon Sep 17 00:00:00 2001
From: PliablePixels <pliablepixels@gmail.com>
Date: Thu, 25 Jun 2015 20:09:21 -0400
Subject: ssl setup desc.

---
 docs/SSL-Configuration.md | 5 +++++
 1 file changed, 5 insertions(+)

(limited to 'docs/SSL-Configuration.md')

diff --git a/docs/SSL-Configuration.md b/docs/SSL-Configuration.md
index 7fec9763..38ae1c6b 100644
--- a/docs/SSL-Configuration.md
+++ b/docs/SSL-Configuration.md
@@ -45,6 +45,11 @@ The easiest way to do that is simply email it to yourself and open your email in
 iOS and Android. Make sure you install it and go through the prompts
 ######Note: Just visiting your https site on mobile safari and "accepting the certificate" DOES NOT mean the certificate is installed in your phone. It simply sets up an exclusion on your browser that does not work for the UI webview inside your app
 
+For example, in iOS, when you double tap on the certificate, you get a screen like this - you need to tap on Install on the top right
+![] (http://www.pbase.com/arjunrc/image/160547522/medium.jpg "SSL Cert")
+
+On Android, you will get a dialog box prompting you to install the certificate
+
 Once you are done with these steps, zmNinja should be able to connect to ZM via SSL. Make sure you select SSL in the settings
 
 ####CA signed certificates
-- 
cgit v1.2.3


From e4dcab581923309084d4a5642e456c3eff842a48 Mon Sep 17 00:00:00 2001
From: PliablePixels <pliablepixels@gmail.com>
Date: Thu, 25 Jun 2015 20:10:17 -0400
Subject: ssl instructions

---
 docs/SSL-Configuration.md | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

(limited to 'docs/SSL-Configuration.md')

diff --git a/docs/SSL-Configuration.md b/docs/SSL-Configuration.md
index 38ae1c6b..b728aa3d 100644
--- a/docs/SSL-Configuration.md
+++ b/docs/SSL-Configuration.md
@@ -46,7 +46,8 @@ iOS and Android. Make sure you install it and go through the prompts
 ######Note: Just visiting your https site on mobile safari and "accepting the certificate" DOES NOT mean the certificate is installed in your phone. It simply sets up an exclusion on your browser that does not work for the UI webview inside your app
 
 For example, in iOS, when you double tap on the certificate, you get a screen like this - you need to tap on Install on the top right
-![] (http://www.pbase.com/arjunrc/image/160547522/medium.jpg "SSL Cert")
+![] 
+(http://www.pbase.com/arjunrc/image/160547522/medium.jpg "SSL Cert")
 
 On Android, you will get a dialog box prompting you to install the certificate
 
-- 
cgit v1.2.3


From 9972b3e9171a400d7fc239385b3e1e8c3fd1b9bc Mon Sep 17 00:00:00 2001
From: PliablePixels <pliablepixels@gmail.com>
Date: Thu, 25 Jun 2015 20:11:35 -0400
Subject: ssl instructions

---
 docs/SSL-Configuration.md | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

(limited to 'docs/SSL-Configuration.md')

diff --git a/docs/SSL-Configuration.md b/docs/SSL-Configuration.md
index b728aa3d..c6e06705 100644
--- a/docs/SSL-Configuration.md
+++ b/docs/SSL-Configuration.md
@@ -39,13 +39,14 @@ restart apache
 sudo service apache2 restart
 ```
 
-####Install certificates (.cer) file in yout phone
+#####Install certificates (.cer) file in yout phone
 Then, you need to install zoneminder.crt in your mobile devices so that zmNinja does not reject the certificate as it is self signed.
 The easiest way to do that is simply email it to yourself and open your email in the phone and install the attachment. Works for both
 iOS and Android. Make sure you install it and go through the prompts
 ######Note: Just visiting your https site on mobile safari and "accepting the certificate" DOES NOT mean the certificate is installed in your phone. It simply sets up an exclusion on your browser that does not work for the UI webview inside your app
 
 For example, in iOS, when you double tap on the certificate, you get a screen like this - you need to tap on Install on the top right
+
 ![] 
 (http://www.pbase.com/arjunrc/image/160547522/medium.jpg "SSL Cert")
 
@@ -54,4 +55,8 @@ On Android, you will get a dialog box prompting you to install the certificate
 Once you are done with these steps, zmNinja should be able to connect to ZM via SSL. Make sure you select SSL in the settings
 
 ####CA signed certificates
-If you purchase a signed certificate, or set up your own root CA zmNinja should just work over SSL. I haven't tried it so far.
+If you purchase a signed certificate, or set up your own root CA zmNinja should just work over SSL. 
+
+You should not have to go through the process of installing certificates in your phone.
+
+I haven't tried it so far.
\ No newline at end of file
-- 
cgit v1.2.3


From cc2ee0c3c2ae687e83f4384531f4b0ff8daed224 Mon Sep 17 00:00:00 2001
From: pliablepixels <pliablepixels@gmail.com>
Date: Sat, 11 Jun 2016 11:44:10 -0400
Subject: deprecated - but keep it here incase we need it in future

Former-commit-id: 1eb878c435d7d9a6ebb35be89e772d67fdd53925
---
 docs/SSL-Configuration.md | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

(limited to 'docs/SSL-Configuration.md')

diff --git a/docs/SSL-Configuration.md b/docs/SSL-Configuration.md
index c6e06705..f95a59e5 100644
--- a/docs/SSL-Configuration.md
+++ b/docs/SSL-Configuration.md
@@ -1,5 +1,7 @@
 ##SSL Configuration notes
 
+###Deprecated: Newer versions of zmNinja automatically handle unsigned certs. Please ignore the rest of this document
+
 If your Zoneminder instance has SSL configured and you need zmNinja to connect to ZM over SSL you need to:
 
 1) Make sure you generate the certificates correctly
@@ -59,4 +61,4 @@ If you purchase a signed certificate, or set up your own root CA zmNinja should
 
 You should not have to go through the process of installing certificates in your phone.
 
-I haven't tried it so far.
\ No newline at end of file
+I haven't tried it so far.
-- 
cgit v1.2.3