Hi,
Does NWConnection API internally presents the client certificate to the server if the client certificate and private keys are present in the keychain when the server requests client authentication during mutual TLS?
Do we need to call sec_protocol_options_set_local_identity specifically for this to work?
Does
NWConnectionAPI internally presents the client certificate to the server if the client certificate and private keys are present in the keychain when the server requests client authentication during mutual TLS?
No. NWConnection does not do this automatically.
Do we need to call
sec_protocol_options_set_local_identityspecifically for this to work?
That’s one option. You can also set a challenge handler (sec_protocol_options_set_challenge_block) which the connection calls if it receives a challenge. Do this if you want to select the identity based on the content of that challenge.
Share and Enjoy
—
Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@" + "apple.com"