NSAllowsArbitraryLoadsInWebContent in UIWebView

Question

Created Aug ’16

Replies 31

Boosts 0

Views 28k

Participants 13

I was reviewing the documentation for NSAllowsArbitraryLoadsInWebContent:

https://developer.apple.com/library/prerelease/content/documentation/General/Reference/InfoPlistKeyReference/Articles/CocoaKeys.html#//apple_ref/doc/uid/TP40009251-SW60

This states:

"An optional Boolean value that applies only to content to be loaded into an instance of the following classes:

```
WKWebView
```
```
UIWebView
```
(iOS only)
WebView (macOS only)

Set this key’s value to

YES

to obtain exemption from ATS policies in your app’s web views, without affecting the ATS-mandated security of your

NSURLSession

connections.

Default value is

NO

.

To support older versions of iOS and OS X, you can employ this key and still manually configure ATS. To do so, set this key’s value to

YES

and also configure the

NSAllowsArbitraryLoads

subkeys.

If you add this key to your

Info.plist

file, then, irrespective of the value of the key, ATS ignores the value of the

NSAllowsArbitraryLoads

key.

Available starting in iOS 10.0 and macOS 10.12."

I was testing this in my app with the iOS 10 simulator (Xcode 8, beta 5), and was not able to get UIWebView to function properly on non-ATS compliant hosts -- I get an error like so:

2016-08-12 11:20:59.666 eBay[2528:1559544] NSURLSession/NSURLConnection HTTP load failed (kCFStreamErrorDomainSSL, -9801)

Should we expect this to work for UIWebView in a future beta release, or is the support only available for WKWebView?

I saw Quinn's note, which only mentions WKWebView: https://forums.developer.apple.com/message/15705

Boost

Answer 1

dloic OP

Apr ’17

Hi,

I can confirm with public release 10.3 the issue is solved. WKWebview is properly using NSAllowsArbitraryLoads and NSAllowsArbitraryLoadsInWebContent flags.

Thanks!

0