Bug 269139

Summary: akonadi-googledata uses unsecure HTTP
Product: [Frameworks and Libraries] Akonadi Reporter: Matt Whitlock <kde>
Component: GoogleData ResourceAssignee: Adenilson Cavalcanti <savagobr>
Status: RESOLVED UNMAINTAINED    
Severity: wishlist CC: dvratil, pim-bugs-null, vkrause
Priority: NOR    
Version First Reported In: 1.2.0   
Target Milestone: ---   
Platform: Gentoo Packages   
OS: Linux   
Latest Commit: Version Fixed/Implemented In:
Sentry Crash Report:

Description Matt Whitlock 2011-03-22 14:30:04 UTC 
Version:           1.2.0 (using KDE 4.6.1) 
OS:                Linux

Since authentication credentials are transmitted when synchronizing Google contacts and calendar, akonadi-googledata should be using HTTPS.  It is currently using HTTP.

tcp6       0      1 2001:470:#:#:#:#:#:#:60513 2001:4860:800c::93:80   SYN_SENT    1717/akonadi_google 
tcp6       0      1 2001:470:#:#:#:#:#:#:60514 2001:4860:800c::93:80   SYN_SENT    1716/akonadi_gcal_r 

You can clearly see in this netstat output that akonadi-googledata is connecting on port 80.

Reproducible: Didn't try

Steps to Reproduce:
Use akonadi-googledata as an Akonadi resource.

Actual Results:  
Akonadi-googledata connects on port 80 (http).

Expected Results:  
Akonadi-googledata connects on port 443 (https).
Comment 1 Daniel Vrátil 2018-08-27 21:53:54 UTC 
The replacement Google resources use HTTPS everywhere.