The last part of the post got chopped off, I was quoting from the documentation "Associated domains establish a secure association between domains and your app.". How is that security established? If more than one app can contain the same domain within its entitlement (from what I have read it is possible for different apps, even from different developers, to contain the same domain) then how does the server know if a request came from an app listed in its app association file versus a request that came from an app which isn't in its app association file?

@Kevin Elliott So the app would run code referenced in the documentation for App Attest, rather than the Message Filter Extension, however when the OS contacts the server its pulling stuff from the keychain which was set in the app? There's a past question here about using (and failing) to use Web Credentials in the Message Filter Extension, should they have been calling that code from the app and not the extension? https://developer.apple.com/forums/thread/758611

AppAttest documentation says: "...Then you use the service to cryptographically sign server requests using the certified key." With text filtering extensions, as the server request is coming from the OS, not from the app/extension, then the app/extension presumably won't be able to sign the server request?

You just said Apple omit it from the payload for privacy reasons, then go on to propose explicity adding it, which would negate the very reason Apple omitted it. However, its not possible to modify the payload anyway, it is transmitted by the OS and the extension does not have the opportunity to change it.

Hello, is there any possibilities using shared web credentials for some form of authentication? P.S. The domain is in the info.plist, isn't that easily inspectable?

Feedback submitted FB15266709 BTW there's a copy/paste typo in the original posting, this will cause the issue: response.transactionalSubActions = [.transactionalCarrier, .transactionalHealth, .transactionalPublicServices, .transactionalFinance, .transactionalWeather, .transactionalRewards, .transactionalOrders, .transactionalOthers, .transactionalReminders] response.promotionalSubActions = [.promotionalOffers, .promotionalOthers, .promotionalCoupons] Or also this would too: response.transactionalSubActions = [ILMessageFilterSubAction.transactionalHealth] response.promotionalSubActions = [ILMessageFilterSubAction.promotionalCoupons]

Thank you that did the trick. However, do you happen to know the specifics of using ContactAccessButton via UIKit? If I display it, and click on its button, then I can see that its expecting a callback/delegate, however I don't see how to can add one programmatically using it in a UIViewController/UIView/Storyboard way.

AFAIK though its not possible to create a different account? When you create an account you have to supply info like your business sku, and legally registered business name and address and banking info etc. etc. The same company cannot create multiple developer accounts can they?

Forgot to ask if there are any limits imposed on the size of the databases. Our dataset of phone numbers to identify/block is hundreds of millions.

@Eskimo Thank you. In the documentation it gives an example of when a Contact Provider could be used: "This allows apps like Phone and Mail to provide personal names and images for incoming calls or messages when your app knows the caller or sender." However with that example given, an app can provide names for a call via the CallKit CallExtension, or it could provide names and images during a call via the live Caller ID lookup extension. Therefore I was wondering what a Contacts Provider brings to the table in this example, that the other two don't?

That's not possible. You can't upload a build to TestFlight which will have pushes set to development. Consider making a development .ipa and installing via Apple Configurator.

More examples here: https://developer.apple.com/forums/thread/746567 - the app hangs in many different locations, but the .ips stack always features NSLog and __ulock_wait2.

I've got an .ips file from an iPhone (created by turning on Hang Detection then re-creating a hang problem). Near the top of the hang stack is main + 96 (MyApp + 111416) [0x1040bb338] Which is no use in trying to diagnose the issue. The Apple instructions for symbolicating a crash file say to use Xcode or the command line. https://developer.apple.com/documentation/xcode/adding-identifiable-symbol-names-to-a-crash-report#Symbolicate-the-crash-report-with-the-command-line However this isn't a crash file, it's a hang file, but is that any reason why it shouldn't be symbolicatable. Dragging it into Xcode as they say to do for crash files doesn't do anything, so instead I've been trying to use the command: atos -arch -o /Contents/Resources/DWARF/ -l However I don't know how to determine the LoadAddress and AddressToSymbolicate, as the example given is for a crash file. I tried this but it didn't work (it says fg: no current job) atos -arch arm64 -o MyApp.app.dSYM/Contents/Resources/DWARF/MyApp -l 111416 0x1040bb338 Is it possible to get the load address and address to symbolicate from the .ips file?

Once 1.1.1 is released, how can 1.1.0 be the "Official Release" - doesn't 1.1.0 cease to exist (on the app store) the moment 1.1.1 is released?

Oh, but I take that back, and consequently recasting my question. So I have an iPhone which has crashed lots of times, its been connected to my Mac for hours, but after going to ~/Library/Logs/CrashReporter/MobileDevice there is nothing there, the MobileDevice folder is totally empty. Yet I know for a fact there are crash reports on that iPhone because I can see them in XCodes Organizer (the reason I am asking this question is for getting reports without using XCode)