The resource could not be loaded because the App Transport Security policy requires the use of a secure connection
I am facing the Problem when I have updated my Xcode to 7.0 or iOS 9.0. Somehow it started giving me the Titled error
\"The resource could not be load
-
This is Apple's way of forcing tighter security on your apis(forced to use https over http). I'll explain how to remove this security setting.
Most answers on here point out adding this key to your info.plist
This alone did not solve this problem for me. I had to add the same key to inside
Project -> Targets -> Info -> Custom iOS Target Properties
This will allow insecure connections to happen from anyone however. If you want to allow only a specific domain to use make insecure connections, you can add the following to your info.plist.
讨论(0) -
In Xcode 7.1 onwards(swift 2.0)
讨论(0) -
I managed to solve this with a combination of many of the mentioned options. I’ll include a checklist of all of the things I had to do to get this to work.
In short:
- Set
NSAllowsArbitraryLoadsto true for my watch extension (not my watch app). - Ensure I was using
httpsand nothttp.
Step one:
Firstly and most obviously I had to add an
NSAppTransportSecuritykey as a dictionary in my watch extension’sinfo.plistwith a subkey calledNSAllowsArbitraryLoadsas a boolean set to true. Only set this in the watch extension and not the watch app’s plist. Although take note that this allows all connections and could be insecure.or
<key>NSAppTransportSecurity</key> <dict> <key>NSAllowsArbitraryLoads</key> <true/> </dict>
Step two:
Then I had to make sure that the url I was trying to load was
httpsand not justhttp. For any urls that were still http I used:Swift:
let newURLString = oldURLString.stringByReplacingOccurrencesOfString("http", withString: "https")Obj-C:
NSString *newURLString = [oldURLString stringByReplacingOccurrencesOfString:@“http” withString:@“https”];讨论(0) - Set
-
iOS 9 (may) force developers to use App Transport Security exclusively. I overheard this somewhere randomly so I don't know whether this is true myself. But I suspect it and have come to this conclusion:
The app running on iOS 9 will (maybe) no longer connect to a Meteor server without SSL.
This means running meteor run ios or meteor run ios-device will (probably?) no longer work.
In the app's info.plist,
NSAppTransportSecurity [Dictionary]needs to have a keyNSAllowsArbitraryLoads [Boolean]to be set toYESor Meteor needs to usehttpsfor itslocalhost serversoon.讨论(0) -
For those of you developing on localhost follow these steps:
- Tap the "+" button next to
Information Property Listand addApp Transport Security Settingsand assign it aDictionaryType - Tap the "+" button next to the newly created
App Transport Security Settingsentry and addNSExceptionAllowsInsecureHTTPLoadsof typeBooleanand set its value toYES. - Right click on
NSExceptionAllowsInsecureHTTPLoadsentry and click the "Shift Row Right" option to make it a child of the above entry. - Tap the "+" button next to the
NSExceptionAllowsInsecureHTTPLoadsentry and addAllow Arbitrary Loadsof typeBooleanand set its value toYES
Note: It should in the end look something like presented in the following picture
讨论(0) - Tap the "+" button next to
-
Open your pList.info as Source Code and at bottom just before
</dict>add following code,<!--By Passing--> <key>NSAppTransportSecurity</key> <dict> <key>NSExceptionDomains</key> <dict> <key>your.domain.com</key> <dict> <key>NSIncludesSubdomains</key> <true/> <key>NSTemporaryExceptionAllowsInsecureHTTPLoads</key> <true/> <key>NSTemporaryExceptionMinimumTLSVersion</key> <string>1.0</string> <key>NSTemporaryExceptionRequiresForwardSecrecy</key> <false/> </dict> </dict> </dict> <!--End Passing-->And finally change
your.domain.comwith your base Url. Thanks.讨论(0)
加载中...
- 热议问题