David Trey on Oct 19, 2011 - 00:10

Hello Nic,

thank you very much for the detailed report. I have forwarded this issue to the developers.

Sorry for the inconvenience.


Best regards,
David

Amir Salihefendic on Oct 19, 2011 - 03:26

Hi Nic

Thanks a lot for the detailed feedback. We have contacted RapidSSL regarding this issue - - it does seem like we need to get a new certificate from them.

Best regards,
Amir

Amir Salihefendic on Oct 19, 2011 - 13:00

This issue should now be resolved, thanks for your patience.

Best regards,
Amir

Nic Jansma on Oct 19, 2011 - 13:30

Perfect, everything's working great on Android clients again.

Thank you,

Peter on Oct 20, 2011 - 11:05

The problem goes on. Whenever I want to connect to todoist (with ANDROID 2.2.1 MOTOROLA Defy) I get:javax.net.ssl.SSLException: Not trusted server certificate.
What's to do ???

David Trey on Oct 20, 2011 - 12:08

Hello Peter,

please tell me - are you accessing the Todoist mobile page http://todoist.com/m or are you using a third-party application?


Best regards,
David

Peter on Oct 20, 2011 - 12:30

Hello David

thanks for help
No problem with: todoist.com/m
but TodoistDroid App says: avax.net.ssl.SSLException
and Todoist for Android says: Autentificacion failed

But I want to use Apps not page

Best regards Peter

Claudia Micare on Oct 24, 2011 - 05:49

I get a certificate error preventing me from seeing Todoist in Outlook. It persists, could this be related? Can it be resolved?

David Trey on Oct 24, 2011 - 07:29

Hello,

@Peter,
thanks you for your feedback. Unfortunately, we didn't get any issue reports from other third party app developers (except the author of TiskTasks above). Please ask the developers of these apps, if they're aware of this issue and if they can reproduce it or give us some feedback if it's related to the issue with the latest SSL certificate.

@Claudia,
please tell me:
- Which Outlook version and operating system are you using?
- What happens exactly when you open Outlook?
- Do you get an error message before the Todoist window opens? Does it open at all?
- When are you getting this error?
- What does it say exactly?


Best regards,
David

Claudia Micare on Oct 24, 2011 - 07:35

@David;

-Outlook 2007
-when I open outlook I get a column to the right where in the past I have at times been able to see my to do list, only now it says:
"Content was blocked because it was not signed by a valid security certificate. For more information, see "Certificate Errors" in Internet Explorer Help."
-Yes the error was there when I first opened Outlook today. I tried logging into the site for good measure then reopening outlook but the error remains.
-Lately whenever I open Outlook but even when it did load beforeI was receiving messages about certificates.

Hope this helps. The program is helping me keep track of a gazillion things that before were slipping off my plate! luckily I can get there online. Thanks

David Trey on Oct 24, 2011 - 09:12

Claudia,

please open Internet Explorer, go to Tools -> Internet Options -> "Content" tab and click "Clear SSL state" (then close IE and open Outlook).

If this doesn't help, go to the same tab again, but this time click the "Certificates" button, go to the "Trusted Root Certification Authorities" tab and remove the "Equifax" certificate.

Also, please try to clear your IE cache and cookies.


Best regards,
David

Claudia Micare on Oct 24, 2011 - 09:17

HI David--Clearing the SSL slate worked! you're a genius

Todd Donatello on Oct 25, 2011 - 01:17

Nic et al,

Not working on my LG Ally running Android 2.2.2. Getting a login failed message on TiskTasks for Todoist despite entering in my UID and PW correctly and checking my connection. Even though I'm not using IE, I still tried clearing cache and cookies, etc. but to no avail. I've messaged Nic separately on this too. But it seems something has happened between the date of his reply that everything appeared to be in order (10/19) and today (10/25).

Eager Todoist and TiskTasks user, hoping we can get this resolved.

Thanks,
Todd

Nic Jansma on Oct 27, 2011 - 21:18

Hi guys,

As Todd mentions, the updated SSL certificates unfortunately do not work with all Android OS devices.

I've verified the updated certificates work with my Motorola Droid Bionic (Android 2.3), but not my HTC Increddible (Android 2.2). I think 2.2 devices will not have the updated certs.

Is it possible to get RapidSSL to use a different root certificate that older Android clients will allow? Or install the appropriate intermediate cert on the todoist SSL server?

eg:
http://code.google.com/p/android/issues/detail?id=10807

https://support.servertastic.com/entries/426677-rapidssl-and-geotrust-certificate-not-trusted-on-mobile-device

http://stackoverflow.com/questions/7203857/rapidssl-certificate-not-trusted-on-android-tablet

https://knowledge.rapidssl.com/library/VERISIGN/ALL_OTHER/RapidSSL%20Intermediate/RapidSSL_CA_bundle.pem

Unfortunately, 99.99% of users that hit a login issue in any Android app will assume it's the app or todoist.com's fault, not that their OS may need a root certificate update.

Thanks for taking a look!

David Trey on Nov 04, 2011 - 11:10

Hello,

we have installed a new certificate: https://knowledge.geotrust.com/support/knowledge-base/index?page=content&id=AR1426&actp=search&viewlocale=en_US&searchid=1283360269668

Please let us know if it fixes this issue.

Sorry for the inconvenience.


Best regards,
David

Nic Jansma on Nov 04, 2011 - 16:43

Thanks David! I've verified that it works on my HTC Increddible 2.2 device.