发表新帖
发表新帖

Does App Store reject submission if NSAllowsArbitraryLoads set to YES?

前端 未结
关注
6 1962
感情败类
感情败类 2020-11-30 12:09

The new ATS involved by iOS 9 cause lots of http related functionalities stop working. I have to add all the http request url into a whitelist or I could simply disable the

相关标签:
6条回答
  • 走了就别回头了
    2020-11-30 12:46

    Thanks for everyone's answer.

    The good news is Apple Accepted my app with NSAllowsArbitraryLoads set to YES.

    UPDATE (Thanks @Vijayts): Apple will reject Apps not conforming to ATS after the end of Dec 2016.

    Source

    However, If you need to load a http:// resource only in web (UIWebView/WKWebView/SafariViewController) then the following should suffice.

    <key>NSAppTransportSecurity</key>
<dict>
    <key>NSAllowsArbitraryLoadsInWebContent</key>
    <true/>
</dict>
    0 讨论(0)
  • 滥情空心
    2020-11-30 12:47

    Latest we heard from Apple about NSAllowsArbitraryLoads was in Dec 2016. https://developer.apple.com/news/?id=12212016b

    Apple is still accepting new apps and updates. My new app got approved in April 2017 with NSAllowsArbitraryLoads set to YES. I recently submitted updates too, no issues no rejection.

    0 讨论(0)
  • 生来不讨喜
    2020-11-30 12:49

    It seems Apple has changed its plans:

    Supporting App Transport Security

    To give you additional time to prepare, this deadline has been extended and we will provide another update when a new deadline is confirmed. https://developer.apple.com/news/?id=12212016b

    0 讨论(0)
  • 囚心锁ツ
    2020-11-30 12:50

    I have an app that allows users to specify a URL to be displayed in a web view during execution. This URL may be an HTTP URL. For this reason I include NSAllowsArbitraryLoads set to yes.

    I have submitted an update to this app after December 2016 and had no problems.

    My plist also specifies NSAllowsArbitraryLoadsInWebContent and I specify exceptions that activate TLS for known web services that my app uses where TLS is supported.

    I simply included a review note that explained that NSAllowsArbitraryLoadsInWebContent is not sufficient since my app is supported on iOS 9.

    I have never even had a question from app review on this.

    0 讨论(0)
  • 隐瞒了意图╮
    2020-11-30 12:51

    All connections using the NSURLConnection, CFURL, or NSURLSession APIs use App Transport Security default behavior in apps built for iOS 9.0 or later, and OS X 10.11 or later. Connections that do not follow the requirements will fail.

    However, You can specify exceptions to the default behavior in the Info.plist file in your app or extension. Use the keys in the property list for specific exceptions or to turn off App Transport Security. Table 1-1 shows the keys and their types, and uses indentation to indicate structure.

    Here is the source link: https://developer.apple.com/library/prerelease/ios/technotes/App-Transport-Security-Technote/index.html

    0 讨论(0)
  • 有刺的猬
    2020-11-30 13:02

    UPDATE: Apple will reject Apps not conforming to ATS after the end of Dec 2016.

    Source

    However, If you need to load a http:// resource only in web (UIWebView/WKWebView/SafariViewController) then the following should suffice.

    NOTE: This key is available only from iOS 10.

    <key>NSAppTransportSecurity</key>
<dict>
    <key>NSAllowsArbitraryLoadsInWebContent</key>
    <true/>
</dict>
    0 讨论(0)
 看不清?
提交回复
热议问题