Hey, thanks Jens and Ben for your advice. I will try to play around with that. If it’s true that enabling client side authentication in the streams invalidates the app that is really a pity. Isn’t the optional client side authentication part of the SSL/TLS rfc?
@Jens: What about the if !TARGET_OS_IPHONE. Is this implemented in your framework to prevent someone using your framework on the iphone in a way that their app gets rejected? Did I got that right? I will let you guys know if I found a way to implement client side authentication AND get the app accepted by Apple. Or are there more Ideas? Has somebody ever used this feature of SSL/TLS on an iPhone? Kind regards, Bastian Am 15.05.2014 um 22:14 schrieb Ben Kennedy <b...@zygoat.ca>: > As a workaround, couldn't you just empirically determine the value of that > constant (presuming it hasn't changed in five years and is not expected to > change), and then define a new constant of your own accordingly? > > b > > Sent from my iPhone > >> On May 15, 2014, at 1:06 PM, Jens Alfke <j...@mooseyard.com> wrote: >> >> I went back and looked into some earlier code of mine that can do this (the >> MYNetwork framework, available on Github). The good news is that I know what >> stream property to set. The bad news is that it’s not in any public header, >> even though this omission has been known for five years or more. And the >> really bad news is that using the constant this way will invalidate your app >> from the iOS or Mac app store :( >> >> #if !TARGET_OS_IPHONE >> // You can't do client-side SSL auth using CFStream without this constant, >> // but it was accidentally not declared in a public header. >> // Unfortunately you can't use this on iPhone without Apple rejecting your >> app >> // for using "private API". :-( >> extern const CFStringRef _kCFStreamPropertySSLClientSideAuthentication; // >> in CFNetwork >> #endif >> >> —Jens >> _______________________________________________ >> >> Cocoa-dev mailing list (Cocoa-dev@lists.apple.com) >> >> Please do not post admin requests or moderator comments to the list. >> Contact the moderators at cocoa-dev-admins(at)lists.apple.com >> >> Help/Unsubscribe/Update your Subscription: >> https://lists.apple.com/mailman/options/cocoa-dev/ben%40zygoat.ca >> >> This email sent to b...@zygoat.ca
signature.asc
Description: Message signed with OpenPGP using GPGMail
_______________________________________________ Cocoa-dev mailing list (Cocoa-dev@lists.apple.com) Please do not post admin requests or moderator comments to the list. Contact the moderators at cocoa-dev-admins(at)lists.apple.com Help/Unsubscribe/Update your Subscription: https://lists.apple.com/mailman/options/cocoa-dev/archive%40mail-archive.com This email sent to arch...@mail-archive.com