Are you looking to fix the NET::ERR_CLEARTEXT_NOT_PERMITTED error? Then you have landed on the right post.<\/p>\n\n\n\n
This NET::ERR_CLEARTEXT_NOT_PERMITTED error is specific to Android users and we know Android has a huge market share compared to other mobile OS.<\/p>\n\n\n\n
This means you are not the only one who is a victim of this particular error, but there can be many users like you who have encountered or are vulnerable to this error message at times.<\/p>\n\n\n\n
But you do not need to worry. In this post, we will try to clear all your doubts regarding this error and help you understand exactly what went wrong and what you need to do to fix this.<\/p>\n\n\n\n
So stay tuned and keep reading this comprehensive post till the end. <\/p>\n\n\n
Now in this section, we shall talk about troubleshooting NET::ERR_CLEARTEXT_NOT_PERMITTED<\/strong> Error. For this, if you are an Android developer you will be required to access your Android App.<\/p>\n\n\n\n The first troubleshooting method you can follow is to enable clear text traffic by modifying the androidmanifest.xml file. Every Android App has this Androidmanifest.xml file that has all the information related to the app that is required by the Android Operating system and other Android platforms.<\/p>\n\n\n\n This particular method bypasses Google’s strict HTTPS guideline, hence it can be a temporary solution unless the website you are trying to load is moved to encrypted traffic.<\/p>\n\n\n\n To enable or allow Clear traffic, all you need to add the “android:usescleartexttraffic” attribute and set its value to “true” in the \u201c<application>\u201d tag.<\/p>\n\n\n\n To navigate and edit the Androidmanifest.xml file, follow the simple steps given below:<\/p>\n\n\n\n Step 1: <\/strong>First you need to open your Android project or access the app’s .apk file. There are various ways you can open and edit your Android project but for your convenience use Android Studio.<\/p>\n\n\n\n Step 2:<\/strong> When you can open your Android Project in Android Studio, Navigate the “AndroidManifest.xml” file located in your project’s directory structure. <\/p>\n\n\n\n Step 3:<\/strong> When you find the “AndroidManifest.xml” file click to open it in a text editor.<\/p>\n\n\n\n Step 4:<\/strong> Now look for the \u201c<application>\u201d tag and add this attribute “android:usescleartexttraffic”<\/p>\n\n\n\n In case the attribute is already set to False, make it True.<\/p>\n\n\n\n Step 5:<\/strong> After that save the file and you are done.<\/p>\n\n\n Note:<\/strong> Please keep in mind that, the above method is not highly recommended, it is because you are bypassing the security and allowing unsecured traffic to your Android App’s web view. This can expose the user’s sensitive information to third parties. Therefore, this method is best suitable for testing or development purposes.<\/p>\n\n\n Apart from what you have seen in the previous method. This solution focuses on allowing clear text Traffic to specific domains you trust. <\/p>\n\n\n\n As compared to the previous one, this method is quite safe and it only allows you to link secure webpages to load on your Android App’s webview.<\/p>\n\n\n\n One thing you should keep in mind is that you can only try one of these two methods, either enable cleartext traffic for all the websites or apps or allow only specific domains or apps. The first thing you need to do is to create a network_security_config.Xml file. For this, you have to open your Android project in Android Studio and go to the “res” directory by following this path app\/src\/main\/res\/xml\/network_security_config.xml.<\/p>\n\n\n\n Now create a new file named “network_security_config.xml<\/strong>” within the res directory and add the following line of codes to it.<\/p>\n\n\n\n This will allow only a specific domain to use cleartext. However, you can add multiple domains or URLs using the “domain include Subdomains\u201d elements. But for security reasons, it would be better to add only those domains or URLs that you trust.<\/p>\n\n\n\n Now, save the “network_security_config.xml<\/strong>” file and update the “AndroidManifest.xml” file to make it effective.<\/p>\n\n\n\n To do this, open this “AndroidManifest.xml<\/strong>” file, look for the application sub-element tags, and insert the following line of codes between them.<\/p>\n\n\n\n Save and close the “AndroidManifest.xml<\/strong>” file. That’s it now you are allowed to load an HTTP webpage in Webview.<\/p>\n\n\n Read:<\/strong> \ud83d\udea9 12 Best Methods to Fix NET::ERR_CERT_DATE_INVALID Error<\/a><\/p>\n\n\n If you want Nginx web servers not to display an error message “NET::ERR_CLEARTEXT_NOT_PERMITTED<\/strong>” on WebViw. You can enforce them to use HTTPS and establish a secure connection between the server and the client.<\/p>\n\n\n\n To make this possible, follow the steps given below:<\/p>\n\n\n\n This code will enable redirection from HTTP to HTTPS. Save the file to make the changes effective.<\/p>\n\n\n\n Now test if the configuration file is working or not by following this command “apachectl configtest”.<\/p>\n\n\n\n If everything turns out to be working, you are required to restart the Apache server by following the below command.<\/p>\n\n\n\n One of the most secure and highly recommended methods for the NET::ERR_CLEARTEXT_NOT_PERMITTED<\/strong> error you can follow is to force or configure the website that uses HTTP instead of HTTPS. Even the Google search engine considers Secure websites as one of the major ranking factors in SERPs. <\/p>\n\n\n\n You can check out our dedicated blogs on this Redirection technique., just follow any of the methods of your choice and eliminate the NET::ERR_CLEARTEXT_NOT_PERMITTED error.<\/p>\n\n\n\n If none of the above methods work for you, or you are feeling lazy enough to follow the above methods. Just access the website or domain in any modern browser you have, i.e. Chrome or Firefox.<\/p>\n\n\n\n However, nowadays if you try to load an HTTP website on these browsers you might encounter a “connection, not private” error message or “Connection not secure sign” at the address bar.<\/p>\n\n\n\n But it doesn’t mean that you are free from NET::ERR_CLEARTEXT_NOT_PERMITTED Samsung error<\/strong>, but still, you are exposed to security risk and whatever data you share on the website is still in cleartext.<\/p>\n\n\n\n Therefore you should avoid sharing or providing any sensitive information to personal details to websites that use HTTP. This is the main reason why Google has disabled it by default.<\/p>\n\n\n Read:<\/strong> \ud83d\udea9 How to Fix NET::ERR_CERT_AUTHORITY_INVALID Error? (10 Solutions)<\/a><\/p>\n\n\n The NET::ERR_CLEARTEXT_NOT_PERMITTED is an error message displayed in the Android System Webview when an Android app is trying to load unencrypted or HTTP information.<\/p>\n\n\n\n You should not misunderstand this error with any technical glitches or issues. Surprizingly when you try to load the same URL or load the same information on any web browser. You might not encounter any errors.<\/p>\n\n\n\n Since the NET::ERR_CLEARTEXT_NOT_PERMITTED is displayed inside the Android apps, you might also misunderstand that there is something wrong with the Android app itself. However, you can easily bypass or fix this error. <\/p>\n\n\n\n The majority of the solutions available are meant for Android developers and web admins. But if you are an end user, you can follow only a handful of troubleshooting methods besides loading the URL on Web browsers. <\/p>\n\n\n If you are an end-user, you might have no idea about Android Web view. Let us help you to make it easy to understand. <\/p>\n\n\n\n It is a special feature of Android OS that helps you load webpages within the Android apps without using external browsers. Also allows developers to create hybrid applications that are a combination of both native as well as web-based features.<\/p>\n\n\n\n Apart from all these features, the only demerit of Web view you will find is you will not get the amount of features you get in the browser.<\/p>\n\n\n\n The NET::ERR_CLEARTEXT_NOT_PERMITTED Error is specific to Android Apps that use Web View. You won’t get such an error while browsing the website via Browser i.e. Chrome or Firefox. <\/p>\n\n\n\n\n
1. Enable clear text traffic by modifying Androidmanifest.xml<\/h3>\n\n\n\n
\n
android:usesCleartextTraffic=\u201dtrue<\/code>” within the application opening and closing tags.<\/li>\n<\/ul>\n\n\n\n<application
android:icon=\"@drawable\/ic_launcher\"
android:label=\"@string\/app_name\"
android:theme=\"@style\/AppTheme\" >
android:usesCleartextTraffic=\u201dtrue\u201d
<\/application><\/strong><\/code><\/p>\n\n\n\n
<\/hr><\/div>\n\n\n
<\/hr><\/div>\n\n\n2. Whitelisting particular website using “network_security_config.Xml”<\/h3>\n\n\n\n
If security is your biggest concern, it would be better for you to follow the method mentioned below:<\/p>\n\n\n\n<?xml version=\u201d1.0\u2033 encoding=\u201dutf-8\u2033?>
<network-security-config>
<base-config cleartextTrafficPermitted=\u201dtrue\u201d>
<trust-anchors>
<certificates src=\u201dsystem\u201d \/>
<\/trust-anchors>
<\/base-config>
<domain-config cleartextTrafficPermitted=\u201dtrue\u201d>
<domain>insert_name_of_domain<\/domain>
<domain includeSubdomains=\u201dtrue\u201d>insert_sub_domain_including_ip_addresses<\/domain>
<\/domain-config>
<\/network-security-config><\/strong><\/code><\/p>\n\n\n\n<?xml version=\u201d1.0\u2033 encoding=\u201dutf-8\u2033?>
<manifest \u2026>
<uses-permission android:name=\u201dandroid.permission.INTERNET\u201d \/>
<application
\u2026
android:networkSecurityConfig=\u201d@xml\/network_security_config\u201d \u2026>
\u2026
<\/application>
<\/manifest><\/strong><\/code><\/p>\n\n\n\n
<\/hr><\/div>\n\n\n
<\/hr><\/div>\n\n\n3. HTTP to HTTPS Redirection for Nginx <\/h3>\n\n\n\n
\n
<VirtualHost *:80>
ServerName your_website.com # Replace with your domain name
# Redirect HTTP to HTTPS
RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule ^(.*)$ https:\/\/%{HTTP_HOST}%{REQUEST_URI} [R=301,L]
<\/VirtualHost><\/strong><\/code><\/p>\n\n\n\n# Ubuntu, Debian
sudo service apache2 restart
# CentOS, Fedora
sudo systemctl restart httpd<\/strong><\/code><\/p>\n\n\n\n4. Force Your WordPress site to use HTTPS<\/h3>\n\n\n\n
\n
5. Load Website in Modern Browsers<\/h3>\n\n\n\n
<\/hr><\/div>\n\n\n
<\/hr><\/div>\n\n\nWhat is NET::ERR_CLEARTEXT_NOT_PERMITTED Error?<\/h2>\n\n\n\n
<\/hr><\/div>\n\n\nWhat is Android Web view?<\/h2>\n\n\n\n