How to use Client Certificate Authentication in iOS App

by

Your NSURLConnection delegate should respond to the connection:didReceiveAuthenticationChallenge: delegate method (see link below).

http://developer.apple.com/library/ios/documentation/cocoa/reference/foundation/Classes/NSURLConnection_Class/Reference/Reference.html#//apple_ref/occ/instm/NSObject/connection:didReceiveAuthenticationChallenge:

It should respond by asking the challenge for its ‘sender’ and providing it with an appropriate credential.

Something like:

- (void)connection:(NSURLConnection *)connection didReceiveAuthenticationChallenge:(NSURLAuthenticationChallenge *)challenge {
  id sender = [challenge sender];

  // create a credential from a certificate
  // see doco for details of the parameters
  NSURLCredential *creds = [NSURLCredential credentialWithIdentity:ident certificates:certs persistence:persistence];

  [sender useCredential:creds forAuthenticationChallenge:challenge];
}

See the NSURLCredential class reference for details of how to create a credential based on a certificate:

More Related Contents:

  1. Google OAuth 2 authorization – Error: redirect_uri_mismatch
  2. Best practices for Storyboard login screen, handling clearing of data upon logout
  3. Single Sign On across multiple domains [closed]
  4. How can I extend ServiceStack Authentication
  5. Socket.IO Authentication
  6. Xcode Command /usr/bin/codesign failed with exit code 1 : errSecInternalComponent
  7. Why is there an “Authorization Code” flow in OAuth2 when “Implicit” flow works so well?
  8. Forgot Password: what is the best method of implementing a forgot password function?
  9. How to use UrlFetchApp with credentials? Google Scripts
  10. how to implement login auth in node.js
  11. What is the purpose of a “Refresh Token”?
  12. What if JWT is stolen?
  13. How to get a JWT?
  14. What are the main differences between JWT and OAuth authentication?
  15. CSRF Token necessary when using Stateless(= Sessionless) Authentication?
  16. What is the Authorized Javascript Origin for a webapp powered by Google Script?
  17. What’s a redirect URI? how does it apply to iOS app for OAuth2.0?
  18. This certificate has an invalid issuer : Keychain marks all certificates as “Invalid Issuer” [duplicate]
  19. IIS7: Setup Integrated Windows Authentication like in IIS6
  20. Using LDAP for authentication in iOS
  21. Appcenter iOS install error “this app cannot be installed because its integrity could not be verified”
  22. How to use Windows Active Directory Authentication and Identity Based Claims?
  23. In Subversion can I be a user other than my login name?
  24. Microservice Authentication strategy
  25. How to obtain Certificate Signing Request
  26. How to use Github Personal Access Token in Jenkins
  27. ASP.NET MVC 3 using Authentication
  28. Multiple IdentityServer Federation : Error Unable to unprotect the message.State
  29. Distribution certificate / private key not installed
  30. How does OpenID authentication work?

Leave a Comment