Sidebar Sidebar
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

iOS swift/objetive c ssl certificates

sgs1 said:
Hi everybody!

I'm testing this tutorial
http://joshuakehn.com/2014/10/29/using-javascript-with-wkwebview-in-ios-8.html

and it works very good. But i've to set an url with HTTPS that has an SSL certificate.

How i can ignore it and visit my website?
Click to expand...

So your site has a self-signed ssl certificate and you want to visit it in a web view? I have done this using a UIWebView (I am assuming it works for WKWebView too).

Before you attempt to load your page in the view, you need to make a call via NSURLConnection and explicitly trust the self-signed ssl cert. You will get notified via NSURLConnectionDelegate when a secure connection is being made with an invalid cert, where you can optionally trust it in your code or not.


Obj-C:
Code: 
- (void)connection:(NSURLConnection *)connection willSendRequestForAuthenticationChallenge:(NSURLAuthenticationChallenge *)challenge {
    if (challenge.protectionSpace.authenticationMethod == NSURLAuthenticationMethodServerTrust && [challenge.protectionSpace.host isEqualToString:@"myDomain.com") {
        NSURLCredential *credential = [NSURLCredential credentialForTrust:challenge.protectionSpace.serverTrust];
        [challenge.sender useCredential:credential forAuthenticationChallenge:challenge];
    } else {
        [challenge.sender performDefaultHandlingForAuthenticationChallenge:challenge];
    }
}

Swift:
Code: 
func connection(connection: NSURLConnection, willSendRequestForAuthenticationChallenge challenge: NSURLAuthenticationChallenge) {
    if challenge.protectionSpace.authenticationMethod == NSURLAuthenticationMethodServerTrust && challenge.protectionSpace.host == "myDomain.com" {
        let credential = NSURLCredential(forTrust: challenge.protectionSpace.serverTrust)
        challenge.sender.useCredential(credential, forAuthenticationChallenge: challenge)
    } else {
        challenge.sender.performDefaultHandlingForAuthenticationChallenge!(challenge)
    }
}


The code above will accept the connection if the host matches what I expect it to or else if will do the default handling. This way your app won't accept all invalid certs, just the one from your host. Note that this isn't the best option, you probably want to do further verification to ensure you are connection to the right host :)

This method works out really well for our app, as we have to hit a REST login endpoint to login in the user before we attempt to show the webpage, and that initial login call causes our ssl cert trust to get activated and then the web view can access our site without issue.

Hopefully that helps!
 
Sean7512 said:
So your site has a self-signed ssl certificate and you want to visit it in a web view? I have done this using a UIWebView (I am assuming it works for WKWebView too).

Before you attempt to load your page in the view, you need to make a call via NSURLConnection and explicitly trust the self-signed ssl cert. You will get notified via NSURLConnectionDelegate when a secure connection is being made with an invalid cert, where you can optionally trust it in your code or not.


Obj-C:
Code: 
- (void)connection:(NSURLConnection *)connection willSendRequestForAuthenticationChallenge:(NSURLAuthenticationChallenge *)challenge {
    if (challenge.protectionSpace.authenticationMethod == NSURLAuthenticationMethodServerTrust && [challenge.protectionSpace.host isEqualToString:@"myDomain.com") {
        NSURLCredential *credential = [NSURLCredential credentialForTrust:challenge.protectionSpace.serverTrust];
        [challenge.sender useCredential:credential forAuthenticationChallenge:challenge];
    } else {
        [challenge.sender performDefaultHandlingForAuthenticationChallenge:challenge];
    }
}

Swift:
Code: 
func connection(connection: NSURLConnection, willSendRequestForAuthenticationChallenge challenge: NSURLAuthenticationChallenge) {
    if challenge.protectionSpace.authenticationMethod == NSURLAuthenticationMethodServerTrust && challenge.protectionSpace.host == "myDomain.com" {
        let credential = NSURLCredential(forTrust: challenge.protectionSpace.serverTrust)
        challenge.sender.useCredential(credential, forAuthenticationChallenge: challenge)
    } else {
        challenge.sender.performDefaultHandlingForAuthenticationChallenge!(challenge)
    }
}


The code above will accept the connection if the host matches what I expect it to or else if will do the default handling. This way your app won't accept all invalid certs, just the one from your host. Note that this isn't the best option, you probably want to do further verification to ensure you are connection to the right host :)

This method works out really well for our app, as we have to hit a REST login endpoint to login in the user before we attempt to show the webpage, and that initial login call causes our ssl cert trust to get activated and then the web view can access our site without issue.

Hopefully that helps!
Click to expand...

Hi, thanks for the reply and sorry for the delay.
I've tried that code and it doesn't work. I paste here the entire code with the error:

Code: 
//
//  ViewController.swift
//  inviojs
//
//  Created by sags on 26/11/14.
//  Copyright (c) 2014 All rights reserved.
//

import UIKit
import WebKit

class ViewController: UIViewController, WKScriptMessageHandler {
    
    @IBOutlet var containerView : UIView! = nil
    var webView: WKWebView?
    
    override func loadView() {
        super.loadView()
        
        
        var contentController = WKUserContentController();
       
        contentController.addScriptMessageHandler(
            self,
            name: "callbackHandler"
        )
        
        var config = WKWebViewConfiguration()
        config.userContentController = contentController
        
        self.webView = WKWebView(
            frame: self.containerView.bounds,
            configuration: config
        )
        self.view = self.webView!
    }
    
    override func viewDidLoad() {
        super.viewDidLoad()

        
        var urlPath = "https://an.url"
        var url: NSURL = NSURL(string: urlPath)!
        var request: NSURLRequest = NSURLRequest(URL: url)
        var connection: NSURLConnection = NSURLConnection(request: request, delegate: self, startImmediately: false)!
        connection.start()
        self.webView!.loadRequest(request)
        
        
    }

    
    func userContentController(userContentController: WKUserContentController, didReceiveScriptMessage message: WKScriptMessage) {
        if(message.name == "callbackHandler") {
            println("JavaScript is sending a message \(message.body)")
        }
        if (message.body as NSString == "ready")
        {
            println("ha inviato un ok")
            webView?.evaluateJavaScript("hello(3,'ciao')",
                
                completionHandler: {(value, error) in println("got value: \(value) error:\(error)")})
            webView?.evaluateJavaScript("obj.hello(3,'ciao')",
                
                completionHandler: {(value, error) in println("got value: \(value) error:\(error)")})
            
         
        
        }
    }
    
    override func didReceiveMemoryWarning() {
        super.didReceiveMemoryWarning()
    }
    func connection(connection: NSURLConnection, willSendRequestForAuthenticationChallenge challenge: NSURLAuthenticationChallenge) {
        if challenge.protectionSpace.authenticationMethod == NSURLAuthenticationMethodServerTrust && challenge.protectionSpace.host == "somedomain.net" {
            let credential = NSURLCredential(forTrust: challenge.protectionSpace.serverTrust)
            challenge.sender.useCredential(credential, forAuthenticationChallenge: challenge)
        } else {
            challenge.sender.performDefaultHandlingForAuthenticationChallenge!(challenge)
        }
    }
    


}
The error is this:
NSURLConnection/CFURLConnection HTTP load failed (kCFStreamErrorDomainSSL, -9813)
 
The code above works fine in iOS 8 but don't work in iOS 7. Is there any solution for iOS 7 ?

Error (iOS 7):
NSURLConnection/CFURLConnection HTTP load failed (kCFStreamErrorDomainSSL, -9813)


thanks !!!
 
You must log in or register to reply here.
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.
Top Bottom
Back