Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Current »

Why am I getting a transport security error when showing the Validic marketplace in iOS WebView?

Apple has increased the security requirements for all domains accessed using iOS WebView. While Validic's security ciphers meet the minimum requirements set by Apple thus allowing the standard app marketplace to render in WebView without throwing an transport security error, many of our app's oAuth pages do not. Here are a few options you may consider when creating an iOS app with WebView.

  • For iOS every domain with a weak encryption type has to be added as an exception. It would be possible to create a script to grab every url, including redirects, from apps.json to find those exceptions. Some sites also have scripts or images loaded from different domains so those would have to be added as well.

  • It is possible to turn off this encryption requirement entirely, but it is not recommended as your app may not be approved by Apple unless a good reason is provided.

  • It may be possible to open the marketplace in the browser app rather than WebView.

Here are a few links that may help.

Please refer to the official Apple documentation before considering the content on Stack Overflow.

  • No labels