I would like to ask whether it is possible to work with CA certificates through addon and legacy extension. I do not need complicated features, only authorize or refuse certificates. That the user can through this addon to edit the list of CA certificates.
For example: A user would all CA certificates canceled and servers and allow only one certificate, for example a bank.
Previous question :
I would ask if you can work with the certificates in Firefox via an
add-on SDK API. My job would be an add-on, where the user can select
the certificates that will use firefox. I would like to do two or
three categories of certificates (normal, important), and based on the
add-on in Firefox to use one or the other group certificates.
For starters, my work, I would like especially to ask for some
references on this issue and whether it is possible to create
something like that, thank you very much.
Related
I am not using native implementations of TLS validations, I need to use my own. For this validation, I would like to fetch a list of trusted certificates from the OS, containing both the certificates that are trusted by default by iOS and certificates the user has manually installed in his iPhone's settings.
There are alternatives, as for example fetching this list from somewhere else, including it hardcoded in the app or giving the option for the user to import this list before using the app for any TLS validation. However, the best option regarding the use cases of the app would be to fetch those directly from the OS. Is it possible? How can I do it in Swift?
You can't get the certificate list itself programmatically, you can only get a Trust object, which doesn't give you access to the certificates.
Source: https://developer.apple.com/forums/thread/92038?answerId=277986022#277986022
I am using Cloudflare for both my DNS and the other features they have. But I am using Heroku as my host.
I have enabled their free SSL beta, and when I browse to my site I see the https section is green like so:
I will be accepting credit card payments via Stripe on my site.
Do I still need to go get an SSL cert from a third-party provider, and upload it to Heroku or is the 'free full SSL' that Cloudflare provides sufficient?
You don't need (as in, not a requirement) SSL for Stripe to work. When it's properly configured, no credit card information will hit your server. That said, users care about the green lock, and they should. So as long as it shows green for you and your users, you should be fine.
More expensive SSL certificates claim their root certificates are widely accepted, some say 100%. But if your users use the most popular browsers Cloudfare's should be OK.
We are developing a app for a client. What is a flow for creating that app, so the client retains ownership, and we can hand over administration easily.
Here is my stab in the dark that might help explain what I mean.
Client creates appleid, developer account and organization.
Client purchases apple developer program.
Client sets up developer as administrator in organization.
Developer create a provision profile and necessary certs and keys.
If new developer takes over, old developer passes key and provision profile to new developer. (or is this step necessary if client has access to this through member center?
If we were to handle everything above, what legal issues would be have to be wary of, for ours and our clients protection.
I realize there was a question about allowing multiple servers to send Push Notifications to the same application using the same SSL Certificate, but my question is different.
Suppose that the developer of a single iOS application would like to allow multiple providers to send Push Notifications to his application, but wants to control which providers have the authority to send APNs to his App (and to be able to revoke that privilege from any one of them).
If all the providers have the same certificate, in order to block one of them from sending APNs, he has to block them all (by revoking the Push SSL Certificate, and getting a new one).
Is it possible to get from Apple multiple Push SSL Certificates for the same Application?
That would make it possible to assign a unique certificate for each provider, which would allow to block a single provider without blocking the rest.
On the Apple Provisioning Portal there doesn't seem to be a possibility to create more than one Push SSL Certificate for the same Application and the same environment (Development/Production), but I wanted to be sure whether it can't be done.
Since no one answered my question, I'll answer it myself.
The answer to that question used to be no but it seems that Apple made some changes in the provisioning portal (which is now called Certificates, Identifiers & Profiles), and now it's possible to define multiple certificates for the same application and the same environment.
Actually you can create only 2 apple push certificates for one App ID and no more.
Apple developer center does not allow me to create more then two and same experience has my friend.
I don´t see how your task can be solved now. In my opinion Apple does not want to support such products. Maybe you can do more with Enterprise Developer account but I don´t have one. So maybe anyone else can tell us if it allows to create more push certificates for on iOS application.
I am working at a research center and they asked me how to sign code as a company (rather than as an individual developer).
I have been googling for a while but I haven't found out anything regarding how to do so. I have been looking through apple's documentation too but still nothing. Does anybody here knows how to proceed in this case?
You need to sign up your company for an Apple Developer account, separately from your personal one.
They don't make it clear (at least in the pages that I just scanned), but I believe the company version of the Apple Developer account allows multiple team members.
There's some more useful information at the Developer Account FAQ.
There's no difference when it comes to code-signing. You generate the key pair the same way, you generate the certificate signing request the same way, you create app IDs the same way, you create provisioning profiles the same way, you compile the code the same way.
Your Apple Developer Account needs to be setup as a company, rather than individual. Code signing has nothing to with wether or not your account is setup as a company or not.
When you setup your Developer Account, you need to input what you want to display as the seller name, and you are not able to change this once it is setup, and the process should explain that to you.
I also don't think there is a way to switch over to a company account if you have already setup your developer account as individual, but you can always call Developer Support to see if it can be changed over.