Hi. I'm currently using WKWebView to load our application's SSO page through Microsoft and I'm need to access the device identity certificates for the NSURLAuthenticationMethodClientCertificate in order to bypass MFA via device trust. I've read it would be easier with SFSafariViewController, but that's not an option for me, as I need to set custom cookies prior to loading the page, a thing which I understand is not possible with SF. Is there any way to access these certificates through WKWebView? Or is there anything else I can use that would let me both set custom cookies and access device identity certificates?
Search results for
ASWebAuthenticationSession cookie
1,295 results found
Selecting any option will automatically load the page
Post
Replies
Boosts
Views
Activity
Failed to access iCloud data I'm also experiencing this issue, after turning on advanced data protection I'm almost always unable to access the containers with the same error show in the OP's screenshot. Attempted Resolution signing out and signing back in does not resolve additionally turning Advanced Data Protection on or off does not resolve. attempts on multiple devices (mac, iphone) and browsers (firefox, chrome, safari) do not resolve clearing browser cache and cookies does not resolve VERY occasionally (like literally once a week,) I am able to sign in following normal sign on procedures and view the private and shared containers of a production or development environment. Its really frustrating! What's going wrong Here's a screenshot of the browser's console on a failed attempt to view the private container, not sure if helpful:
Topic:
App & System Services
SubTopic:
iCloud & Data
Tags:
Hello, I'm having an issue where my app is in TestFlight, and some of my testers are reporting that FairPlay protected videos are not playing back in iOS 17. It's been working fine in iOS 16 (my app's initial target). I can see from the debug logs that for an online stream request - contentKeySession(_ session: AVContentKeySession, didProvide keyRequest: AVContentKeyRequest) is never called. Whereas, a download for offline playback request, the function is called. I've used much of the sample code in HLS Catalog With FPS as part of the FPS developer package. All of my m3u8 files are version 5 and contain encryption instructions like below: #EXT-X-KEY:METHOD=SAMPLE-AES,URI=skd://some-uuid,KEYFORMAT=com.apple.streamingkeydelivery,KEYFORMATVERSIONS=1 Here's a short excerpt of the code being run: let values = HTTPCookie.requestHeaderFields(with: cookies) let cookieOptions = [AVURLAssetHTTPHeaderFieldsKey: values] assetUrl = del(assetUrl) clip!.assetUrl = AVURLAsset(url: URL(string: assetUrl)!, options: c
We have been seeing a NSURLError cannot parse error with error code -1017 for 0.01% of all the requests fired from our native app. We double checked the request headers and cookies but found no difference from the API calls that succeeded for the same path. For most of these requests, we found (through our analytics tools) that 99% of the times, there was no response received from the server(response object is nil); trying to understand why would a no response cause a cannot parse error. We do not get much information from error received as to what really went wrong, did the request even reach the server or was killed or modified by the OS? Any help or further detail will be very helpful. Error in detail: Foundation.URLError(_nsError: Error Domain=NSURLErrorDomain Code=-1017 cannot parse response UserInfo={NSUnderlyingError=0x280eddc50 {Error Domain=kCFErrorDomainCFNetwork Code=-1017 (null) UserInfo={_kCFStreamErrorCodeKey=-1, _kCFStreamErrorDomainKey=4}}, NSErrorFailingURLStringKey=https://mydomain.
I'm trying to replace my method calls to NSKeyedArchiver and NSKeyedUnarchiver that were recently deprecated in the most recent iOS SDK. I'm trying to implement these calls on an object that conforms to the NSCoding protocol, not the NSSecureCoding protocol.I managed to replace calls to +[NSKeyedArchiver archivedDataWithRootObject:] with calls to +[NSKeyedArchiver archivedDataWithRootObject:requiringSecureCoding:error:], passing false for requiringSecureCoding and verified that my object is successfully encoding.However, when I attempted to replace calls to +[NSKeyedUnarchiver unarchiveObjectWithData:] with calls to +[NSKeyedUnarchiver unarchivedObjectOfClasses:fromData:error:], there was no error and the call returned nil. What I found especially odd was that I couldn't trigger the object's implemention of the - (void) encodeWithCoder:(NSCoder *) aCoder method from the NSCoding protocol; the log statement I placed there wasn't triggered.Here's my call to 'unarchivedObjectOfClasses:fromData:error:':[NSKeyedUn
well, that lasted two minutes. firefox udate fixed the problem, then i closed firefox to clear cache & cookies (from this site) and reopened. now it’s junk again. thanks, apple! and thanks for all your help here! it's amazing, the number of helpful responses!
Topic:
App & System Services
SubTopic:
Core OS
Tags:
well, that lasted two minutes. closed firefox to clear cache & cookies and reopened. now it’s junk again. thanks, apple!
Topic:
App & System Services
SubTopic:
Core OS
Tags:
We have the same issue, and it's very annoying. We rely on Universal Links for login (for secure callback from ASWebAuthenticationSession to the app), so App Review definitely stumble upon that issue during review. We never get any user tickets about it and it never occurs during our own testing, but it happens pretty often during App Review. So far, luckily, we have explained the situation to App Review, they try again, and it works. But it feels very fragile; there must be something with the App Review install process which is not reliably registering Universal Links.
Topic:
Code Signing
SubTopic:
Entitlements
Tags:
In iOS 17 beta 5, the alert controller that pops up when sharing cookies with Safari was different than it was in iOS 16. I'm not sure how many betas this was in, but it said: Do you want to also sign in to in Safari? This allows and in Safari to share information about you such as your account. will work without this. Cancel Sign in to & Safari Only Sign in to In the official release of iOS 17, the alert is back to having just Cancel and Continue and the text it had previously: Wants to Use to Sign In This allows the app and website to share information about you. Question is, was this a fluke in beta? Is the ability to for users to disable Safari cookies something that is coming back? Is it a setting? I can't seem to find any information about this at all. It was concerning for us in beta, because it seemed like it was going to be a potential source of login issues, but now I'm not sure what to make of it. Thank you!
@garrett-davidson Sure thing. I do think some of our users will be confused, but that is also partly due to the login provider my company uses and decisions I don't have much control over. When users are presented this choice, I expect them to choose app only, and I don't blame them. The problem we'll face is that a remember my device setting for MFA is cookie-based, and users will be unintentionally disabling that. So we'll either have to communicate that to them pro actively or handle it on the support side. When I first saw this, I was actually excited because I thought it was going to help me make the case for dropping our login provider in favor of something more user friendly. But that's realistically a bit of a stretch and I expect many in a similar situation will just be stuck supporting it. In terms of improving this feature, one pain point with these SSO type logins is that you also get the prompt asking for permission to sign in when a user signs out, if you actually want to clear out the
Topic:
App & System Services
SubTopic:
Core OS
Tags:
Using WebAuthn (i.e. security keys or passkeys) is only supported for first-party uses in WKWebView. For third-party sign in (e.g. Sign in with Apple), you'll need to use ASWebAuthenticationSession.
Topic:
Safari & Web
SubTopic:
General
Tags:
I'm using Xcode 14.2 to build an app that runs on iOS 16.4. There is no webView.isInspectable property in this version. When my app presents a webview, it is inspectable in Safari -> develop, which is nice. However, when starting a ASWebAuthenticationSession, Safari -> develop shows no inspectable applications. It was inspectable on iOS 16.1 but not iOS 16.4. How to solve this?
Topic:
App & System Services
SubTopic:
Core OS
Tags:
iOS
Safari
Safari Developer Tools
Authentication Services
I just wrote code for our app to use ASWebAuthenticationSession for 3rd-party authentication (in particular, YUBIKEYS WOOHOO). Our app registers a URI scheme of x-com-kithrup for launch services events, so I used x-com-kithrup-yubi for ASWebAUthenticationSession. Only, I didn't change the back end, so it still redirects to x-com-kithrup://success on a successful login. And... ASWebAuthenticationSession is still calling the handler when it gets a URL with the x-com-kithrup URI, instead of the x-com-kithrup-yubi URI scheme.
Been happening for about 3 weeks. Cleared cache and cookies. I've logged out and back in and rebooted my laptop. Also tried both safari and chrome. My coworkers had the same problem a couple of months ago, and it just resolved itself. Repro steps Login to app store connect tap on testflight tap on any screenshot feedback. With feedback open, I can only see Open in Xcode and OK buttons. Expected behavior :to have access to a delete button. Actual : nly see Open in Xcode and OK buttons.
I am running application in XCode 14.3.1 which build using Visual Studio 2017 (Apache Cordova) and getting below error. 2023-09-04 13:38:59.119104+0530 CC Mobile[7551:1246047] ADAL version 2.3.1 2023-09-04 13:38:59.315325+0530 CC Mobile[7551:1246047] DiskCookieStorage changing policy from 2 to 0, cookie file: file:///Users/sankum03/Library/Developer/CoreSimulator/Devices/ECFE254E-3529-4220-AE0D-10C143E96610/data/Containers/Data/Application/D2125721-3B33-442F-994A-B606C5D6B61C/Library/Cookies/com.protiviti.CC.mobile.0001.binarycookies 2023-09-04 13:38:59.364681+0530 CC Mobile[7551:1246047] Apache Cordova native platform version 4.3.0 is starting. 2023-09-04 13:38:59.364914+0530 CC Mobile[7551:1246047] Multi-tasking -> Device: YES, App: YES 2023-09-04 13:38:59.784539+0530 CC Mobile[7551:1246047] Using UIWebView 2023-09-04 13:38:59.788448+0530 CC Mobile[7551:1246047] [CDVTimer][handleopenurl] 0.221014ms 2023-09-04 13:38:59.792992+0530 CC Mobile[7551:1246047] [CDVTimer][intentandnavigationfil