Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

HTTPS with NSURLConnection - NSURLErrorServerCertificateUntrusted

Tags:

cocoa-touch

certificate

https

ssl

iphone

I have an application that connects fine over http. When trying https I got the error that says that the root cert is not trusted. I found URLs for my site certificate, its CA certificate, and the CA's root certificate and have added them through Safari to the phone. Now when I go to Preferences -> General -> Profiles I can see all my certificates that go all the way up the chain. There is a red unsigned label on each certificate. Still when I connect I get the NSURLErrorServerCertificateUntrusted error. I'm trying to figure where to go next.

Any help would be great. The only other thing that may affect this, is that I am connecting to an odd port. So my url is www.domain.com:port. Does the port number create a certificate - domain name mismatch?

Now I have used the iPhone Configuration Utility to add a configuration profile to the phone. It has my root certificate, ca certificate, and site certificate. The profile on the phone says its verified. In the details I can see my three certificates. But when I try to connect, I still get the untrusted certificate error. Any suggestions?

Just trying to see if anyone else can help on this?

like image 420
Brian Avatar asked Oct 16 '09 13:10

Brian

1 Answers

There is a supported API for ignoring bad certificates during NSURLConnection loads. To do so, simply add something like this to your NSURLConnection delegate:

- (BOOL)connection:(NSURLConnection *)connection canAuthenticateAgainstProtectionSpace:(NSURLProtectionSpace *)protectionSpace {
  return [protectionSpace.authenticationMethod isEqualToString:NSURLAuthenticationMethodServerTrust];
}

- (void)connection:(NSURLConnection *)connection didReceiveAuthenticationChallenge:(NSURLAuthenticationChallenge *)challenge {
  if ([challenge.protectionSpace.authenticationMethod isEqualToString:NSURLAuthenticationMethodServerTrust])
    if (... user allows connection despite bad certificate ...)
      [challenge.sender useCredential:[NSURLCredential credentialForTrust:challenge.protectionSpace.serverTrust] forAuthenticationChallenge:challenge];

  [challenge.sender continueWithoutCredentialForAuthenticationChallenge:challenge];
}

Note that connection:didReceiveAuthenticationChallenge: can send its message to challenge.sender (much) later, after presenting a dialog box to the user if necessary, etc.

like image 96
Gordon Henriksen Avatar answered Oct 23 '22 01:10

Gordon Henriksen
Sign in to Comment

Related questions

Dragging views on a scroll view: touchesBegan is received, but no touchesEnded or touchesCancelled
Detect if a point is inside of MKCircle in iPhone sdk ios 7
Mixing static and dynamic UITableViewController content causes NSRangeException
Add a click event to some text in ios NSString
How to launch camera on viewDidLoad with UIImagePickerControllerDelegate?
Xcode ignore storyboard warning
Having issue with allowing codesign to use my keychain
Rotate PDF in UIWebView with Swift
Spacing between UITableViews like Settings Application
Playing audio in asset library
Setting iPhone wallpaper (locked screen background) programmatically?
One UITableView - Multiple DataSource, best design pattern?
Create custom activity indicator in iPhone SDK?
How to play iPhone tap sound?
What are some good guidelines for keeping iPhone app file-size under 10.0MB?
iPhone: how to draw text in a window?
Setting background colour of a UIView increasing memory usage
Can using my iPhone as a development device ruin my iphone for normal use?
Hiding/Showing Status Bar
Center UIImageView inside UIScrollView without contentInset?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!