wireless iphone app distribution – problem with itms-services protocol

by

The answer is actually very simple: The URL needs to be “double-escaped”, i.e.

itms-services://?action=download-manifest&url=https://example.com/My%2520App.plist

This is because the value gets unescaped to https://example.com/My%20App.plist before being treated as another URL. This gets unescaped by the server at example.com to a space.

The parser does not treat + specially: ...&url=https://.../test/a+b results in "GET /test/a+b HTTP/1.1" appearing in the Apache logs. (It is unwise to assume that all query strings are application/x-www-form-urlencoded; this is only standardized in HTML.)

Incidentally, it looks like itms-services uses +[NSURL URLWithString:] to validate URLs: url=.../My%20App.plist results in no request because [NSURL URLWithString:@"https://.../My App.plist"] returns nil. However, there’s a long-standing bug in NSURL: It will escape a single invalid (BMP) character at the end instead of returning nil. My test cases

  • url=.../test/%3c results in the log "GET /test/< HTTP/1.1" (this is definitely invalid HTTP!)
  • url=.../test/%0a results in an error on device but no log message (because Apache treats it as a malformed request)
  • url=.../test/%0d results in the log "GET /test/\r HTTP/1.1"

More Related Contents:

  1. iPhone get SSID without private library
  2. iOS 7: UITableView shows under status bar
  3. How to select Multiple images from UIImagePickerController [duplicate]
  4. iOS app submission : missing 64-bit support
  5. How to set iPhone UIView z index?
  6. UIViewController viewDidLoad vs. viewWillAppear: What is the proper division of labor?
  7. Change Default Scrolling Behavior of UITableView Section Header
  8. modal View controllers – how to display and dismiss
  9. How to determine UIWebView height based on content, within a variable height UITableView?
  10. Why do we use use_frameworks! in CocoaPods?
  11. iOS 7 custom back button
  12. how to overload an assignment operator in swift
  13. Why are didBeginContact called multiple times?
  14. Swift – How to detect orientation changes
  15. How to stop multiple times method calling of didUpdateLocations() in ios
  16. Cannot put a google maps GMSMapView in a subview of main main view?
  17. Are there any advantages to using a UITableViewController over a UIViewController that implements tableview delegate and datasource methods? [closed]
  18. Screenshot showing up blank – Swift
  19. Xcode 6 isn’t autocompleting in Swift
  20. How to get UIScrollView vertical direction in Swift?
  21. Redirect NSLog to File in Swift not working
  22. Real time blur effect for Navigation Bar
  23. Method load() defines Objective-C class method ‘load’, which is not permitted by Swift 1.2
  24. How to calculate actual font point size in iOS 7 (not the bounding rectangle)?
  25. How to do a native “Pulse effect” animation on a UIButton – iOS
  26. Passing variables between view controllers
  27. How to fetch all images from custom Photo Album – Swift
  28. How to properly group a list fetched from CoreData by date?
  29. Use table view disclosure indicator style for uibutton ios
  30. Disable bounce effect in UIPageViewController [duplicate]

Leave a Comment