Google might decline Android app submissions with an "SSL Error Handler" alert. This article explains why this occurs and how you can resolve this issue in the BiznessApps CMS.
On your Google Developer Console you got
- Your app is using an unsafe implementation of WebViewClient.onReceivedSslError handler. Please see the Google Help Center article for details, including the deadline for fixing the vulnerability.
Also, you may have received via email the following:
- We reviewed [Name], with package name com.app_****.layout, and found that your app uses software that contains security vulnerabilities for users. Apps with these vulnerabilities can expose user information or damage a user's device and may be considered to be in violation of our Malicious Behavior policy.
Below is the list of issues and the corresponding APK versions that were detected in your recent submission. Please migrate your apps to use the updated software as soon as possible and increment the version number of the upgraded APK.
Deadline to fix
SSL Error Handler
For more information on how to address WebView SSL Error Handler alerts, please see this Google Help Center article.
This issue usually occurs when an insecure URL (a URL starting with "HTTP," instead of "HTTPS") is added to any feature that allows customers to add links
- Log in to BiznessApps CMS.
- Locate the affected app.
- Go to Build.
- Under the Features section, click on each website feature and any other feature that a custom URL can be added to (eg 'Contacts', 'Info-Tier') and locate any field with an insecure URL by checking the URLs under the Website Views section.
- Click on the edit icon of the website that has an insecure URL.
- Edit the URL by adding an "S" after "HTTP" in the URL.
- Click Save.
- Click Save on the Build screen on the upper-right hand corner.
- Republish your Android App
You will be able to publish your app successfully on the Google Play Store without receiving this error message.