a.x61.sh

[SOLVED] Does anyone know what Google domain should I whitelist to get push notification on Android?
from CodenameDarlen@lemmy.world to privacy@lemmy.ml on 14 May 18:17
https://lemmy.world/post/46858174

[SOLVED] I kind of figured it out by doing some minimum amount of bank transfers, I concluded that the only needed domain in order to make push notifications work for my banking app is mtalk.google.com.

Not sure if it’s totally right tho. It worked for me.

I found this post on /e/OS forum: community.e.foundation/t/…/5

mtalk.google.com is needed by GCM (cloud messaging). For those using adblockers it was always recommended to whitelist it (not block it), otherwise one would have problems with push messaging

[OP] I’m currently using a ROM with GrapheneOS sandboxed Play Services + DNS filter with No Google list that blocks everything from Google.

But I think it’s worth the trade off of whitelist just a specific domain because I really need instant push notifications from my banking app.

But since I blocked everything I think it’s not reaching Google servers to handle push notifications properly.

So if anyone could help on this I really appreciate it.

I see my bank trying to reach these domains:

firebaselogging.googleapis.com
firebaseinstallations.googleapis.com
firebase-settings.crashlytics.com

(I just pause the DNS filter when I need something related to Play Services)

#privacy

threaded - newest

shrek_is_love@lemmy.ml on 14 May 18:56 collapse

Unfortunately I didn’t do a good job documenting my whitelist, but I have both *.firebase.googleapis.com and *.firebaseinstallations.googleapis.com in there, which I believe I needed to get Google Voice notifications to work.

s38b35M5@lemmy.world on 14 May 19:07 next collapse

My app required these to work

CodenameDarlen@lemmy.world on 14 May 20:16 next collapse

I just did some tests and found out it’s mtalk.google.com for me at least.

I whitelisted this domain and then I was able to receive notifications on my bank app.

Also I allowed Notifications permission on Play Services app. But I can tell for sure the only allowed google domain was mtalk.google.com, I checked the logs.

Can you check if mtalk.google.com is on your block lists?

My case I’m not using a Google app, it’s just my bank app, so it might be different? I’ll do some more tests later to make sure.

EDIT:
I found this post on /e/OS forum: community.e.foundation/t/…/5

According to /e/OS support:

mtalk.google.com is needed by GCM (cloud messaging). For those using adblockers it was always recommended to whitelist it (not block it), otherwise one would have problems with push messaging

s38b35M5@lemmy.world on 14 May 22:19 next collapse

Mtalk was definitely needed for my web version, but I’m blocking all mtalk FQDNs and my apps still work.

shrek_is_love@lemmy.ml on 15 May 07:30 collapse

I’ve subscribed to a lot of block lists and aggressively block most stuff by default, and I just confirmed that mtalk.google.com is in my manual whitelist as well. (Could have been for Google Voice or something else)

[deleted] on 14 May 20:21 collapse