发表新帖
发表新帖

AFHTTPRequestOperation with self-signed SSL and HTTP Basic Auth (-1012 error)

后端 未结
关注
2 842
南方客
南方客 2021-01-19 04:06

I am trying to upload photo to my web-server via AFHTTPRequestOperation. Here is my AFHTTPSessionManager. All http-requests via this manager<

2条回答
  • -上瘾入骨i
    -上瘾入骨i (楼主)
    2021-01-19 04:44

    In AFNetworking you can use the AFSSLPinningMode to make changes in the security policies so if your server does not have SSL installed use the below code

    let operation = AFHTTPRequestOperation(request: YourMutableRequestObject)

        let policy = AFSecurityPolicy(pinningMode: AFSSLPinningMode.None)
        policy.validatesDomainName = false
        policy.allowInvalidCertificates = true

       operation.securityPolicy = policy

    And if your server is using a certificate you can use the below code

    let operation = AFHTTPRequestOperation(request: YourMutableRequestObject)
let policy = AFSecurityPolicy(pinningMode: AFSSLPinningMode.Certificate)
        policy.validatesDomainName = false
        policy.allowInvalidCertificates = true
        operation.securityPolicy = policy

    Before using the above code make sure that you have added the cer certificate in your application bundle, coz if not you will not be able to make the calls, you can get the cer file from your web developer or any authority who is providing you with the cer.

    In case if you receive a crt file from the web developer you need to convert it to cer using the OpenSSL using the below code

    openssl x509 -in apache.crt -out yourCertFileName.cer -outform der

    That should be enough to make the calls

    Update

    As per apple's new ATS pattern in iOS 9 you have to provide some permissions inside your info.plist file.

    if you want to make a insecure call give below is the XML that you need to integrate inside the info.plist (Please note you are not going to get any auto fillers here, you have to view your plist as a source and copy + paste the below)

    NSAppTransportSecurity

 NSExceptionDomains
 
yourserver.com

  
  NSIncludesSubdomains
  
  
  NSTemporaryExceptionAllowsInsecureHTTPLoads
  
  
  NSTemporaryExceptionMinimumTLSVersion
  TLSv1.1

    Apple also provides a way to disable ATS given below is the XML for the same but its not recommended

    NSAppTransportSecurity


NSAllowsArbitraryLoads

    In my case since my server was using a self signed certificate i just changed the AFSSLPinningMode to Certificate and it worked as expected.

    Hope this helps someone

    0 讨论(0)
 看不清?
提交回复
热议问题