发表新帖
发表新帖

Https iOS with self signed certificate

前端 未结
关注
2 1706
死守一世寂寞
死守一世寂寞 2020-12-01 11:30

I have a server with a self signed certificate . I want to connect my device with the server with https form . I hear that I must just accept the connexion . But I don t kn

相关标签:
2条回答
  • 既然无缘
    2020-12-01 11:52

    Certificate configuration:

    You have to install the Self Signed Certificate or CA on the device in order for the device to trust it then only device trusts the SSL connection.

    In the case of installing self signed certificate make sure domain name of the URL is same as Common name of certificate.

    If there is no domain name then IP address is fine.

    Certificate installation:

    You can just host it on the web server and try to access it from safari then iOS will prompt for the certificate installation in the iOS Device

    Certificate Creation:

    Here is the way to create self signed certificate so that you can fill all the details and host in web server.

    openssl req -x509 -newkey rsa:2048 -keyout key.pem -out cert.pem -days 1001 -nodes

    (Pay attention while entering the value for Common Name)

    0 讨论(0)
  • 离开以前
    2020-12-01 12:17

    By default, Cocoa refuses all SSL connections when the certificate is invalid.

    However, you can force them to accept also invalid certificates. The method depends on which library/framework you are using. For example:

    • For NSURLConnection, check this answer.
    • For ASIHTTPRequest, you need to set the property validatesSecureCertificate to NO.
    • For AFNetworking, you can check the code to use in this page
    • For CFNetwork, the low-level Foundation framework, check this sample code.
    • For SURLConnection, which looks like you're using, you need to follow the same instructions for NSURLConnection. Indeed, SURLConnection is just a subclass of NSURLConnection.

    Important note:
    The code above, to accept any kind of SSL certificate, even if invalid, is a serious security risk. Basically, it makes the whole SSL useless. As a consequence, you should use that code only during development, if you really need to test with SSL connections.
    Please also note that Apple will reject any application submitted to the App Store that accepts invalid SSL certificates.

    0 讨论(0)
 看不清?
提交回复
热议问题