1 Reply
      Latest reply: Oct 17, 2016 3:12 AM by eskimo RSS
      Sminu Level 1 Level 1 (0 points)

        The iOS app needs the basic ssl validation to secure the client-server communication. I need a way to avoid SSL pinning which may have the client-server dependencies and need to update the app if the SSL cert changed.

        Is there any way to allow all the valid SSL cert issued by any trusted CA's ?

        • Re: Need the default SSL certificate validation in iOS app
          eskimo Apple Staff Apple Staff (7,960 points)

          Is there any way to allow all the valid SSL cert issued by any trusted CA's ?

          You can do this using a trust object (<Security/SecTrust.h>).

          However, all the built-in TLS clients already do standard (RFC 2818) server trust evaluation by default, so you shouldn’t need to mess with this unless you’re using a third-party TLS library (something I recommend you avoid) or you need to customise TLS server trust evaluation (which you can learn more about in TN2232).

          Share and Enjoy

          Quinn “The Eskimo!”
          Apple Developer Relations, Developer Technical Support, Core OS/Hardware
          let myEmail = "eskimo" + "1" + "@apple.com"