From Documentation page of App Proxy Provider, it says that the flow control is only supported for the Apps which are from Mac App store only. What does it means?
Does it means the dmg file like Firefox, Chrome which we install on Mac outside from App Stores, App Proxy Provider will not intercept these flows?
Doc Link: https://developer.apple.com/documentation/networkextension/app_proxy_provider
Copying statement:
"
......
App proxy providers are supported in iOS on managed devices only, and in macOS for Mac App Store apps only.
......
"
With kext we were able to intercept any flow regardless the source of the installer file for managing traffic, how will it work with new Network extension framework now?
From Documentation page of App Proxy Provider, it says that the flow control is only supported for the Apps which are from Mac App store only. What does it means?
The “in macOS for Mac App Store apps only” is referring to the app containing the app proxy provider. You can configure the app proxy provider to see flows from non-Mac App Store apps. Specifically, look at the
com.apple.vpn.managed.appmapping
configuration profile payload, where target apps are identified by designated requirement, bundle ID, path, and signing identifier, all of which are present on both Mac App Store and Developer ID apps.
Having said that, the documentation is incorrect because, as of macOS 10.15, we support Developer ID signed NE providers that run as a system extension.
Please file a bug against the doc and post the number here.
Share and Enjoy
—
Quinn “The Eskimo!”
Apple Developer Relations, Developer Technical Support, Core OS/Hardware
let myEmail = "eskimo" + "1" + "@apple.com"