What is the best way of implementing App Transport Security?
I'm making a web browser and I'm in the process of finalizing the application and submitting it to the app store.
One of the things I left for last is App Transport Security.
I know it's forced so Developers use https:// instead of http:// but a web browser can't be limited like this.
Is there anything else I can do besides adding "NSAllowsArbitraryLoads: YES" to the info.plist file?
Solution
- For iOS 10+, you can evaluate using
NSAllowsArbitraryLoadsForMedia,NSAllowsArbitraryLoadsInWebContent,NSRequiresCertificateTransparencyorNSAllowsLocalNetworkinginstead of the highly insecureArbitraryLoads: YES. - However, for a
web browserapplication, I don't see much of an alternative besidesArbitraryLoads: YES. You can consider implementing alerting the user when loading such sites.
This is the complete guide to ATS
- SwiftUI - dismissing keyboard on tapping anywhere in the view - issues with other interactive elements
- Copy paste text into iOS simulator
- React Native init specific version
- Real time audio processing iOS
- Notification banner style iOS
- Is there a way in Flutter to detect which part of a Widget was pressed?
- iOSApp crash when shared via testflight with COSMCtrl _foregroundAppActivity incoming bundle has nil supplied UUID, finds existing error in devicelog
- `dd of=/dev/rdisk4` gives `Operation not permitted` on jailbroken iOS
- Apple Worldwide Developer Relations Certification Authority Intermediate Certificate and iOS
- Jailbreak development using xcode
- AVAssetResourceLoaderDelegate implementation for an asset of unknown length
- Custom SwiftUI container view using UIViewRepresentable - How to do it correctly?
- SwiftUI ScrollView gesture recogniser
- Include of non-modular header inside framework module 'firebase_storage.FLTTaskStateChannelStreamHandler'
- SwiftUI: matchedGeometryEffect and clipShape Animation Bug
- Previous preparation error: The developer disk image could not be mounted on this device
- iOS: SKStoreReviewController Is deprecated. how to use RequestReviewAction on project objective C?
- How do I allow text selection on a Text label in SwiftUI?
- How to center a subview of UIView
- Xcode project not showing list of simulators
- UITextView link selectable without rest of text being selectable
- Programmatically add calendar event to Outlook on iOS or Android
- SwiftUI AsyncImage - try again on image loading failure
- Changing navigation bar color in Swift
- Getting error : The contents of this item cannot be retrieved. When installing the p12 file in Keychain
- How do I conditionally compile swift based on swift version and target SDK?
- Pinch and zoom data in a Chart
- How to render images @2x and @3x from a URL in a SwiftUI Image
- How can I add files to the iOS simulator?
- export public key from keychain access