Cleartext traffic allowed warning on Google play pre launch report

To the corona team.

Hi

I have used 2019.3470 build. I get the following warning in the pre-launch report:

Cleartext traffic allowed for all domains
 

Your app’s Network Security Configuration allows cleartext traffic for all domains. This could allow eavesdroppers to intercept data sent by your app. If that data is sensitive or user-identifiable it could impact the privacy of your users.

Consider only permitting encrypted traffic by setting the  cleartextTrafficPermittedflag to false, or adding an encrypted policy for specific domains.  Learn more

In daily build 3455, we set cleartextTraficPermitted was set to default to true. I’m not sure the reason for this, other than to remove warnings for people trying to use http://

I’ll see if I can get a clarification from Engineering and see if there is a way to control the value.

Rob

Hello! Some ad network integrations require cleartext traffic, not user data is transmitted over it, just some art assets, as far as I understand.

This Google warning should not affect your app performance or ranking on Play Store. It may be a good idea to make this entry optional.

I’m using build 3476 and still getting this warning. Can nothing be done about it?

Troy you will have to provide us more information on what you’re doing. Are you connecting to websites? Are you using http: or https:? Are you using ad networks?

It’s just a warning and if any network activity you’re doing is over https: and the ad networks are using http: this really becomes a harmless warning.

Rob

I’m using https to connect w my server. No ads.

Sorry. Please, ignore this warning for now. We’re working on making this kind of thing optional. This warning should not affect Google play ranking or be visible to users.

@vlads, thank you - I’m access https to our own website for terms and conditions.

In daily build 3455, we set cleartextTraficPermitted was set to default to true. I’m not sure the reason for this, other than to remove warnings for people trying to use http://

I’ll see if I can get a clarification from Engineering and see if there is a way to control the value.

Rob

Hello! Some ad network integrations require cleartext traffic, not user data is transmitted over it, just some art assets, as far as I understand.

This Google warning should not affect your app performance or ranking on Play Store. It may be a good idea to make this entry optional.

I’m using build 3476 and still getting this warning. Can nothing be done about it?

Troy you will have to provide us more information on what you’re doing. Are you connecting to websites? Are you using http: or https:? Are you using ad networks?

It’s just a warning and if any network activity you’re doing is over https: and the ad networks are using http: this really becomes a harmless warning.

Rob

I’m using https to connect w my server. No ads.

Sorry. Please, ignore this warning for now. We’re working on making this kind of thing optional. This warning should not affect Google play ranking or be visible to users.

@vlads, thank you - I’m access https to our own website for terms and conditions.