iOS App Transport Security not accepting TLSv1.2 connection and plist exceptions not making any difference iOS App Transport Security not accepting TLSv1.2 connection and plist exceptions not making any difference nginx nginx

iOS App Transport Security not accepting TLSv1.2 connection and plist exceptions not making any difference


ios ssl nginx app-transport-security

The server does not provide a complete certificate chain in its SSL/TLS handshake. While some clients can handle this and build out a trust chain, others cannot.

You can find the missing intermediate certificate via https://whatsmychaincert.com/?api.branon.co.uk and serve it along with your site's certificate in your SSL configuration in nginx.

Do remember to remove any ATS exceptions that you may have put in place!

ios ssl nginx app-transport-security

The format of the keys I use to allow older versions of TLS (for amazonaws, for example) looks like this:

<key>NSIncludesSubdomains</key><string>NO</string><key>NSThirdPartyExceptionMinimumTLSVersion</key><string>TLSv1.1</string><key>NSThirdPartyExceptionRequiresForwardSecrecy</key><string>NO</string>

The rest of the structure looks the same. At one point, we had this at the root level.

<key>NSExceptionMinimumTLSVersion</key><string>TLSv1.0</string>

Recent Posts
How can I color dots in a xy scatterplot according to column value?
How to update a claim in ASP.NET Identity?
What does {0} mean when initializing an object?
Accessing members of items in a JSONArray with Java
How to log SQL statements in Spring Boot?
Powershell Get-WebSite name parameter is ignored
How to detect scroll to bottom of html element
Java synchronized method
How to test controllers with CodeIgniter?
Detect Visual Composer
Matplotlib: Specify format of floats for tick labels
Rails join a list of strings with commas and "and" before the last