ASWebAuthenticationSession cookie

Last 30 days i am trying to purchase developer program. every alternate day my order get canceled. Tried with Different cards master, visa, followed instruction which received mail from apple customer support clear cache and cookies before transaction. No solution. Requesting to apple higher management please look this serious issue. lots of people have same issue. Believing Apple will look this and solve this serious issue Thank you

Safari has been working fine since Monday. Here we are 6 days later and Safari on my iPhone wont load any websites without crashing. The app itself doesnt crash, just the tab crash's. Says problem repeatedly happened on this webpage and page title changes to Webpage Crashed. I have cleared all cookies and data, rebooted phone several times, perform force reboot/reset. I'm kind of surprised that I'm the only one reporting this issue.

From how I understood the new APIs in the video, it sounds to me like the Face/Touch ID authentication can only be used on services that implement an automatic sign-out for the user to enhance security. But I didn't quite get if this new API will also be useful for situations where a user actively signs out or has his browser setup to delete all cookies from time to time. From how I understood it, the user needs to be known to the website already via some cookie when the user visits the website to show the Sign in with Face/Touch ID button. If the user was anonymously visiting the website, there would be no way to actually use Face/Touch ID to sign in, is this correct? So as I understand it, the API doesn't actually provide a secure and convenient way to sign in, instead it merely provides a way to re-sign in. Please correct me if I'm wrong. A pointer to the API I might have misunderstood would also help clarify this.

I'd like to distribute enterprise .IPA's to other members of our organization. We have a website that sits behind a VPN and requires SSO authentication. Is it possible to distribute IPA's like this? From my testing, it does not appear to be the case. But perhaps I'm missing something. I've tried putting both the manifest .plist and the .IPA on this website and it does not work. Moving the manifest off-site at least gives a prompt to install, but the install never completes. Only when both the IPA and manifest are off-site, does this seem to work. My guess is that whatever is handling the itms-services protocol on the phone must not be inheriting the permissions/auth info/cookies from the existing user session. If so, any chance this feature could be added?

I'm trying to use web-extensions on Safari 14 Preview Safari Technology Preview: Release 109 (Safari 14.0, WebKit 15610.1.17.2) macOS Catalina: 10.15.6 Beta (19G60d) I'm trying to read a custom header from HTTP Response from background script, I see this header in the Response Headers list using a Network Tool, but the Response of fetch doesn't contain some headers Example: fetch('https://postman-echo.com/response-headers?foo1=bar1&foo2=bar2').then(response => { tfor (var header of response.headers) { ttconsole.log(header); t} }); What the code returns in Chrome: [content-length, 29] [content-type, application/json; charset=utf-8] [date, Wed, 01 Jul 2020 21:29:47 GMT] [etag, W/1d-PgOLWVqd2mMvcpNzTF0Cfy4hftg] [foo1, bar1] [foo2, bar2] [status, 200] [vary, Accept-Encoding] Total: 8 fields What the code returns in Safari 14.0: [content-length, 29] [content-type, application/json; charset=utf-8] [date, Wed, 01 Jul 2020 21:31:23 GMT] [etag, W/1d-PgOLWVqd2mMvcpNzTF0Cfy4hftg] [vary, Accept-Encoding] Total: 5

I'm using a wonderful tutorial by Kevin Colligan that is teaching me to make a cookie matching game. I'm basically doing this to make my sick mother a game, and she loves puzzlers, and asked for one specifically. The problem I'm having is that there is a layer of red X's behind my pieces that obscure the view of the pieces so that the game is basically unplayable. I've spent the day making art assets and getting them to the right size, and basically swapping them out to keep it easy on myself. I'm not a coder yet. I don't know why Wordpress links are uncool but I can upload the issue to YouTube if they pass through. Thanks for any and all help.

Hello, One of the components of our application uses UIWebView and it's support of webSQL. Now, We are upgrading the app according to Apple's guidelines and switching from UIWebView to WKWebView. Based on Apple documentation WKWebView supports webSQL. https://developer.apple.com/documentation/webkit?language=objc WKWebsiteDataStore A WKWebsiteDataStore object represents various types of data used by a chosen website. Data types include cookies, disk and memory caches, and persistent data such as WebSQL, IndexedDB databases, and local storage. But we were unsuccessful migrating to WKWebView and getting webSQL to work. My Native code is really simple: WKWebViewConfiguration *conf = [[WkWebViewConfiguration alloc] init] self.webView = [[WkWebView alloc] initWithFrame:self.view.bounds configuration:conf]; [self.webView loadRequest[NSUrlRequest requestWithURL:[NSURL URLWithString:@......]]]; And our javascript var db = window.openDatabase('local_db', '1.0', 'local database', 200 * 1024 * 1024); We always

Hi, I have managed to enroll a device and signIn. However, I don't see how to cancel/delete a device registration. If I try to enroll again with the same device for a particular website, safari pops a message (You have allready configured FaceId for this website), with only a cancel option which results in an error canceled by user to the create call, that I can't differentiate from the cancel logic at the first creation. So, if one of my user loose his cookie or wants to disable (I still can delete credentials stored server side), I don't know how to handle a new enrollement for the same device . try { newCredential = await navigator.credentials.create({ publicKey: makeCredentialOptions }); } catch (e) { var msg = Could not create credentials in browser. Probably because the username is already registered with your authenticator. Please change username or authenticator.; console.error(msg, e); showErrorAlert(msg, e); } Any though / Ideas ? Maybe I am missing something obvious. I thought it would be

I am attempting to use ASWebAuthenticationSession for logging into LinkedIn. However, LinkedIn doesn't support callbacks (redirecturi) back to the app. They only support http or https. Problem is they put the token in the redirecturi so if I can't detect it and grab the token/code then I can't move on to next step. I can't seem to figure out how to get ASWebAuthenticationSession to respond to this so I can get the token and move on to next step of autho. Does anyone have any experience in this?

Greetings, I have questions regarding ITP 2.3 and CNAME subdomains. Our portal offers interoperability between multiple health care platforms through an iframe. In the current situation, all of the parties that integrate with our platform host their applications via a DNS CNAME record that is owned by our shared customer (let's say: customer.com). This means our applications also use CNAMEs. As we all share the same parent domain, I'd expect Safari to not use ITP as they should be handled like first-party cookies. ITP is blocking specific subdomains though. This is a simplified version of our current situation: portal.customer.com CNAME portal.supplierA.com app1.customer.com CNAME app.supplierA.com ✅ app2.customer.com CNAME app.supplierB.com ❌ In the above situation, application1.customer.com can be loaded in an iframe just fine (one of our own applications). However, when loading application2.customer.com in the iframe, ITP is triggered. It fails to set a session cookie even though it's a s

As we know, we can use WKContentRuleList to block url requests/cookies or perform other actions in WKWebView. Is there any way that we can know what has been blocked by the WKWebView based on that WKContentRuleList?