HTTPS proxy support

[MaheshBGajera]

I am using this library for one of my project where in I fetch emails using IMAP client and I use proxy there.
I use HttpProxyClient and it seems to be working fine but now I realise that I need my proxy to work on HTTPS not HTTP for some security reasons(my proxy credentials are not encrypted over wire).

Is there any possibility that you can support HTTPS proxy here?

OR does Socks5ProxyClient supports TLS?

Thanks

[jstedfast]

I will put this on the radar for 3.0.

The problem with trying to add this to 2.x is that the proxy needs to return a Socket rather than a Stream.

I will need to modify it to return a Stream for this to be possible.

[MaheshBGajera]

Thank a lot. Do you have any expected release date for 3.0?

[jstedfast]

I do not have an expected release date, but I've already been working toward a 3.0 release in my vnext branch.

[jstedfast]

I've created a GitHub Project board. Assuming you can at least view it, it should give you an idea of the progress I'm making toward v3.0.

There's also a MimeKit 3.0 board.

[jstedfast]

This is now implemented in the vnext branch

[MaheshBGajera]

thank you.

[jstedfast]

If you can, please test to make sure it works.

[jstedfast]

Have you tested this at all?

I'd like to make a 3.0 release but I need this tested first.

[MaheshBGajera]

I tested https proxy on nuget 3.0.0-preview1 and I am getting following exception.

MailKit.Security.SslHandshakeException: An error occurred while attempting to establish an SSL or TLS connection.

The host name did not match the name given in the server's SSL certificate.

---> System.Security.Authentication.AuthenticationException: The remote certificate was rejected by the provided RemoteCertificateValidationCallback.
at System.Net.Security.SslStream.SendAuthResetSignal(ProtocolToken message, ExceptionDispatchInfo exception)
at System.Net.Security.SslStream.ForceAuthenticationAsync[TIOAdapter](TIOAdapter adapter, Boolean receiveFirst, Byte[] reAuthenticationData, Boolean isApm)
at MailKit.Net.Proxy.HttpsProxyClient.ConnectAsync(String host, Int32 port, Boolean doAsync, CancellationToken cancellationToken)
--- End of inner exception stack trace ---
at MailKit.Net.Proxy.HttpsProxyClient.ConnectAsync(String host, Int32 port, Boolean doAsync, CancellationToken cancellationToken)
at MailKit.Net.Proxy.ProxyClient.ConnectAsync(String host, Int32 port, Int32 timeout, CancellationToken cancellationToken)
at MailKit.MailService.ConnectNetwork(String host, Int32 port, Boolean doAsync, CancellationToken cancellationToken)

[jstedfast]

@MaheshBGajera you will need to override the ServerCertificateValidationCallback property on the HttpsProxyClient to manually validate the SSL certificate.

As the error suggests, the hostname in the SSL certificate does not match the hostname of the proxy that you are connecting to.

[jstedfast]

MailKit v3.0.0 has been released with this feature.