Hi, I have installed a self-hosted server as an tor onion service. It works well using a browser through its .onion address. However, if I redirect the android app through orbot, it claims the URL is invalid. Many applications will just connect without any further check, would it be possible to let the app pass the URL through orbot? Thanks.
Unlikely. In part probably because it requires https which you probably aren’t using, though you make no mention of setup
Read down from here.
Aside from that you’d have to hack & build yourself.
Well, I could use https on the .onion, is the url rejected at the app level because of the http, or because of the .onion? I’ll make some investigations. The setup is basic, a tor hidden service forwards to rocket chat port, with an extra front container in the docker compose setup.
The setup is through docker, with the latest images available, following exactly this https://docs.rocket.chat/docs/deploy-with-docker-docker-compose as of today, and just an extra tor container in front.
The apps require https with certs.
Have done for quite a while. IOS is also stricter than Android.
Remember Rocket is not a web server. It serves web content on 3000 but that is not quite the same thing.
You are transmitting info in the clear.
Rockrt should be behind a reverse proxy with SSL support + certs for your own security. Just port forwarding is not a great idea as per above.
But I’m not sure you can run that setup on onion.
LE certs are not available on onion.
You might want to consider what you are trying to hide/protect & why.
You may be more secure hidden in plain site…