Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

iOS 7 enterprise distribution on secured server [closed]

Tags:

ios

ios7

ios6

basic-authentication

enterprise-distribution

I have an enterprise distribution certificate that I use to deploy internal applications. Certain of my applications have very sensitive material and to protect the application from being installed by just about anyone in the company, I use a password-protected directory on a web server to host the .IPA file, while the .plist file is on an open web server. Here's the problem I have:

On iOS6, I click the link to install (starts with itms-services://), iOS prompts me to enter my credentials then proceeds to install the application.

On iOS7, the same link works just fine, but for some reason, it asks for my credentials TWICE. Once my credentials have been entered twice, the application installs just fine.

Anyone has any idea why this is happening? What's different in this process?

like image 244
Simon Germain Avatar asked Jan 06 '14 18:01

Simon Germain

1 Answers

I checked an access log of web server. The itunesstored application asked TWICE. (HEAD and GET)

10.0.2.2 - - [06/Feb/2014:14:50:48 +0900] "HEAD /test/app/app.ipa HTTP/1.1" 401 - "-" "itunesstored/1.0 iOS/7.0.4 model/iPhone4,1 (6; dt:73)"
10.0.2.2 - test [06/Feb/2014:14:51:03 +0900] "HEAD /test/app/app.ipa HTTP/1.1" 200 - "-" "itunesstored/1.0 iOS/7.0.4 model/iPhone4,1 (6; dt:73)"
10.0.2.2 - - [06/Feb/2014:14:51:04 +0900] "GET /test/app/app.ipa HTTP/1.1" 401 539 "-" "itunesstored/1.0 iOS/7.0.4 model/iPhone4,1 (6; dt:73)"
10.0.2.2 - test [06/Feb/2014:14:51:09 +0900] "GET /test/app/app.ipa HTTP/1.1" 200 4066787 "-" "itunesstored/1.0 iOS/7.0.4 model/iPhone4,1 (6; dt:73)"

So, I changed a setting of web server to ignore basic auth when it requets HEAD.

BEFORE:

<Directory "/Library/WebServer/Documents/test/app/">
    AuthType Basic
    AuthName "BASIC AUTH"
    AuthUserFile "/etc/apache2/htpasswd"
    Require valid-user
</Directory>

AFTER:

SetEnvIf Request_Method HEAD headreq
<Directory "/Library/WebServer/Documents/test/app/">
    Order Allow,Deny
    Allow from env=headreq
    AuthType Basic
    AuthName "BASIC AUTH"
    AuthUserFile "/etc/apache2/htpasswd"
    Require valid-user
    Satisfy Any
</Directory>

After that, The itunesstored application asked only ONCE. (only GET).

like image 116
Kazutaka Kamiya Avatar answered Oct 07 '22 04:10

Kazutaka Kamiya
Sign in to Comment

Related questions

In GCD, are all tasks in a serial queue guaranteed to run in the same thread?
tintColor of UIActionSheet (or UIAlertView) (iOS 7+)
How to tell whether user opened app with notification with iOS 7 remote-notification background mode?
iOS Safari <button disabled></button> doesn't disable?
Optimization: what are sidetable_release() and sidetable_retain()?
iOS SDK - drop shadow on masked image
Programmatic Vertical Alignment of UIPageControl in Superview using NSLayoutConstraint
Crash on orientation change after calling setViewControllers:animated:
How to Upload video to server from iPhone?
iOS SpriteKit how to create a node with an image from a folder within app bundle?
Does Sprite Kit render in the background, or on the main thread? How does it work?
how to turn off auto layout for only one view ( not the whole story board ) xcode
Is it programmatically possible for Google to track the referrer URL of a Google Maps URL on a mobile browser that opens up a native app?
Using ReactiveCocoa to track UI updates with a remote object
CBPeripheralManager is not powered on
Is it possible to Recognize the Character drawn on iPhone screen using Tesseract OCR?
Why SKSpriteNode node.frame.size.width is smaller than node.size.width?
Beat Matching Algorithm
iPad modal controller is dismissed after rotation
Offline map API for mobile development

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!