Network Performance Configuration (Android)

You are here:
< All Topics

SSL Certificate Installation for Android Devices

As of Android N, you need to add configuration to your app in order to have it trust the SSL certificates generated by Charles SSL Proxying. This means that you can only use SSL Proxying with apps that you control.

In order to configure your app to trust Charles, you need to add a Network Security Configuration File to your app. This file can override the system default, enabling your app to trust user-installed CA certificates (e.g. the Charles Root Certificate). You can specify that this only applies in debug builds of your application so that production builds use the default trust profile.

    • Add a file res/xml/network_security_config.xml to your app:
<network-security-config> 
   <debug-overrides>
      <trust-anchors>
         <!-- Trust user added CAs while debuggable only --> 
         <certificates src="user" />
      </trust-anchors> 
   </debug-overrides>
</network-security-config>
    • Then add a reference to this file in your app’s manifest, as follows:
<?xml version="1.0" encoding="utf-8"?> 
<manifest ... >
   <application android:networkSecurityConfig="@xml/network_security_config" ... > 
      ...
   </application> 
</manifest>

 

Table of Contents