I have the following simple code to connect to a SSL webpage <pre class="prettyprint"><code>NSMutableURLRequest *urlRequest=[NSMutableURLRequest requestWithURL:url]; [ NSURLConnection sendSynchronousRequest: urlRequest returningResponse: nil error: &error ]; </code></pre> Except it gives an error if the cert is a self signed one <code>Error Domain=NSURLErrorDomain Code=-1202 UserInfo=0xd29930 "untrusted server certificate".</code> Is there a way to set it to accept connections anyway (just like in a browser you can press accept) or a way to bypass it?

If you're unwilling (or unable) to use private APIs, there's an open source (BSD license) library called ASIHTTPRequest that provides a wrapper around the lower-level <code>CFNetwork APIs</code>. They recently introduced the ability to allow <code>HTTPS connections</code> using self-signed or untrusted certificates with the <code>-setValidatesSecureCertificate:</code> API. If you don't want to pull in the whole library, you could use the source as a reference for implementing the same functionality yourself.

How to use NSURLConnection to connect with SSL for an untrusted cert?

Tags:

ios

objective-c

https

ssl-certificate

app-transport-security

I have the following simple code to connect to a SSL webpage

NSMutableURLRequest *urlRequest=[NSMutableURLRequest requestWithURL:url]; [ NSURLConnection sendSynchronousRequest: urlRequest returningResponse: nil error: &error ];

Except it gives an error if the cert is a self signed one Error Domain=NSURLErrorDomain Code=-1202 UserInfo=0xd29930 "untrusted server certificate". Is there a way to set it to accept connections anyway (just like in a browser you can press accept) or a way to bypass it?

961

asked Jun 01 '09 02:06

erotsppa

2 Answers

There is a supported API for accomplishing this! Add something like this to your NSURLConnection delegate:

- (BOOL)connection:(NSURLConnection *)connection canAuthenticateAgainstProtectionSpace:(NSURLProtectionSpace *)protectionSpace {   return [protectionSpace.authenticationMethod isEqualToString:NSURLAuthenticationMethodServerTrust]; }  - (void)connection:(NSURLConnection *)connection didReceiveAuthenticationChallenge:(NSURLAuthenticationChallenge *)challenge {   if ([challenge.protectionSpace.authenticationMethod isEqualToString:NSURLAuthenticationMethodServerTrust])     if ([trustedHosts containsObject:challenge.protectionSpace.host])       [challenge.sender useCredential:[NSURLCredential credentialForTrust:challenge.protectionSpace.serverTrust] forAuthenticationChallenge:challenge];    [challenge.sender continueWithoutCredentialForAuthenticationChallenge:challenge]; }

Note that connection:didReceiveAuthenticationChallenge: can send its message to challenge.sender (much) later, after presenting a dialog box to the user if necessary, etc.

114

answered Sep 30 '22 17:09

Gordon Henriksen

If you're unwilling (or unable) to use private APIs, there's an open source (BSD license) library called ASIHTTPRequest that provides a wrapper around the lower-level CFNetwork APIs. They recently introduced the ability to allow HTTPS connections using self-signed or untrusted certificates with the -setValidatesSecureCertificate: API. If you don't want to pull in the whole library, you could use the source as a reference for implementing the same functionality yourself.

answered Sep 30 '22 17:09

Nathan de Vries

Related questions
                            
                                Array from dictionary keys in swift
                            
                                Changing navigation bar color in Swift
                            
                                Clearing NSUserDefaults
                            
                                How to add a touch event to a UIView?
                            
                                Detect current device with UI_USER_INTERFACE_IDIOM() in Swift
                            
                                Creating a left-arrow button (like UINavigationBar's "back" style) on a UIToolbar
                            
                                iOS 7 status bar back to iOS 6 default style in iPhone app?
                            
                                Adding images or videos to iPhone Simulator
                            
                                Xcode error: Code signing is required for product type 'Application' in SDK 'iOS 10.0'
                            
                                EXC_BAD_ACCESS signal received
                            
                                Best practices for Storyboard login screen, handling clearing of data upon logout
                            
                                How can we programmatically detect which iOS version is device running on? [duplicate]
                            
                                How to use dark mode in simulator iOS 13?
                            
                                How to Sync iPhone Core Data with web server, and then push to other devices? [closed]
                            
                                cocoapods - 'pod install' takes forever
                            
                                How do you load custom UITableViewCells from Xib files?
                            
                                iPhone is not available. Please reconnect the device
                            
                                UIActivityViewController crashing on iOS 8 iPads
                            
                                How to detect iPhone 5 (widescreen devices)?
                            
                                Generate .pem file used to set up Apple Push Notifications

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!

Donate Us With