Swift: Add Certificate Authority root certificate

Asked Mar 07 '16 at 03:08

Active Mar 07 '16 at 12:41

Viewed 1,652 times

We're attempting to follow the Apple docs for using your own certificate authority (CA):

While a self-signed certificate is a reasonable approach during development, there is a better way: create your own certificate authority ... and have it issue a certificate for your test server. You can then ... hard-wire your certificate authority's root certificate into your app

I haven't been able to figure out how to hard wire the CA root cert using Swift. The paper mentions an approach but I haven't been able to translate this into Swift code:

Get a copy of the remote peer's certificate ...

Get the server certificate from the trust object (pass an index of 0 to SecTrustGetCertificateAtIndex)

Get the data for that server certificate (SecCertificateCopyData)

Compare this to the certificate data you got in step 1; if they match, you're talking to the correct peer

How can you do this via Swift?

edited Mar 07 '16 at 12:41

asked Mar 07 '16 at 03:08

Marcus Leon

55,199
118
297
429

Possible duplicate of [How to pin the Public key of a certificate on iOS](http://stackoverflow.com/questions/15728636/how-to-pin-the-public-key-of-a-certificate-on-ios) – jtbandes Mar 07 '16 at 07:44
Difference is that ticket is about pinning the server SSL cert and this is about pinning the root CA cert.. – Marcus Leon Mar 07 '16 at 12:42
Updated ticket to clarify objective/question – Marcus Leon Mar 07 '16 at 12:46

Swift: Add Certificate Authority root certificate

0 Answers0