I have an app connecting via https where the web server has a self signed SSL. Is this allowed by apple or does anything have to be done before submission?
Asked
Active
Viewed 1,286 times
2
-
the self-singed certificates may need to be **marked as trusted manually** by the end-user in the iOS Settings app – iOS will not trust self-signed certificates automatically, but the end-user could override that case by case, so, that is nothing to do with the submission or approval. – holex Dec 10 '19 at 10:27
1 Answers
2
Yes, you can do it, you can find the answer in this question
You need to define in your info.plist your domain.
<key>NSAppTransportSecurity</key>
<dict>
<key>NSAllowsArbitraryLoads</key>
<true/>
<key>NSExceptionDomains</key>
<dict>
<key>example.com</key>
<dict>
<key>NSExceptionAllowsInsecureHTTPLoads</key>
<true/>
<key>NSIncludesSubdomains</key>
<true/>
</dict>
</dict>
</dict>
m1sh0
- 2,236
- 1
- 16
- 21