How to protect endpoints used by Message Filtering Extension?

App & System Services General
AnyDeveloper OP
Created 16h
Replies 1
Boosts 0
Views 43
Participants 2

Hi,

I am just wondering if there is any option to protect my endpoints that will be used by Message Filtering Extension?

According to the documentation our API has 2 endpoints:

  • /.well-known/apple-app-site-association
  • /[endpoint setup in the ILMessageFilterExtensionNetworkURL value of the Info.plist file] that the deferQueryRequestToNetwork will request on every message

Since all requests to these 2 endpoints are made by iOS itself (deferQueryRequestToNetwork), I don't understand how I can protect these endpoints on my side, like API key, or maybe mTLS.

The only way that I found is white list for Apple IP range.

Is there other methods for it?

Replies  1
Boosts  0
Views  43
Participants  2
mungbeans OP
9h

I was asking the same question on here several months ago, seems there is no way.

Do you have an Apple IP range list? How did you obtain it, how do you know it won't change at some point in the future though.

0
How to protect endpoints used by Message Filtering Extension?
First post date Last post date
 
 
Q