FYI: Overriding App Transport Security in iOS 9

[Jens Alfke]

You iOS developers testing with the iOS 9 beta might be running into the new App Transport Security feature, which by default enforces that apps make only HTTPS connections, and that up-to-date versions of the SSL protocol are used. As a result, if the Sync Gateway your app connects to isn’t using SSL, the replicator will fail with an NSURLError -1200.

I ran across a blog post by Steven Peterson that describes how to (temporarily!) disable this, so you can get on with development. Of course you shouldn’t ship your app this way — instead, get an SSL cert for your Sync Gateway so your users’ data is safe in transit.

(Sync Gateway’s SSL implementation uses current best practices, like SSL 1.2 and strong cipher suites, so App Transport Security will be happy.)

—Jens

[Brendan Duddridge]

Could this also be why the PhotoDrop app doesn't work on iOS 9? Although I did modify it to tell it to use a self generated SSL certificate. After the receiving device's QR code is scanned, the sending device eventually just times out and aborts the send. No photos are transmitted.

Thanks!

Brendan

[Jens Alfke]

On Jun 12, 2015, at 10:49 AM, Brendan Duddridge <bren...@gmail.com> wrote:

Could this also be why the PhotoDrop app doesn't work on iOS 9? Although I did modify it to tell it to use a self generated SSL certificate. After the receiving device's QR code is scanned, the sending device eventually just times out and aborts the send. No photos are transmitted.

I don’t think so, because you got a timeout error instead of an SSL error. I don’t really know what’s going on with your attempt to use PhotoDrop. Best thing to do would be to file a bug report.

—Jens