I am successfully seeing https traffic from a proxy setup on an iPhone to a wifi network so that it is routed through a desktop running fiddler. However, some http requests fail. I have all items checked under options > https. Ideas?
See http://groups.google.com/group/httpfiddler/browse_thread/thread/55b865509faaf119
Short answer is that a different certificate generation strategy is needed to interoperate with iOS based products. This will be coming in the next few weeks.
Related
My iOS project is running but getting no internet access in this project, In Safari browser internet is fine, but only in the project i am unable to access internet.
xcode project not connect to internet , already access internet in safari.
Safari Internet access done,
Project login is not working internet access error xcode 9.1.
video link
iOS devices should be connected same wifi networks and checked for connect via network under devices and simulators.enter image description here
I think the issue is with the API's / http request / the url you are using. And the network (wifi / mobile data) you are using to make the login request.
http request / the login url you are using may require your company's authorized wifi, to get response from that login request. I also faced the same issue when using a public wifi of my company, then informed this issue to the network team and backend team, then they gave access for some other authorized wifi, then i got the response successfully.
So discuss with your network team and the backend team.
And check the login url is working fine in Postman. It is an application used to check the API's / url's by the backend team are working fine. In that you just need to put the url and the parameters required.
Are you in China? You may go to settings and choose Network, and then find your app in list. So you can change the net setting for your app.
I have set up an API endpoint on my Digital Ocean VPS to receive incoming SMS to my Twilio number. It was working.
Then I started using CloudFlare. I believe that it stopped working after that, but since I receive SMS so infrequently, I am not absolutely sure. Although Twilio's website indicates that they sent an HTTP request and received a 502 Bad Gateway error, my server logs never registered any incoming requests from Twilio. I know that my API endpoint works because when I manually enter the API endpoint in my Chrome browser, my server receives it and logs the GET request as expected.
I tried asking Twilio's support for the full details of the supposedly failed request, but they refuse to give it to me.
Does anyone know which setting in CloudFlare to adjust that may fix this? I've tried turning off and reducing all the security settings as I thought it may be a firewall issue. How else can I go about debugging this problem without turning off CloudFlare completely (I need it on for other purposes)? I will accept the first answer or advice that leads to the solution. Thanks!
EDIT: this is the response from CloudFlare
One thing to ask them, is whether they support the SSL configuration
of Universal SSL - which uses SNI and ECDSA. We have seen instances of
3rd party services not supporting one or both of these, and therefore
failing to make calls via HTTPS.
Universal SSL support is defined by the client machine's support for
two newer features:
Server Name Indication (SNI) Elliptic Curve certificates (ECDSA) What
browsers work with Universal SSL?
If you need broader browser compatibility for older browsers/operating
systems, our Pro plan plan provides this.
Also, if you want to get full information about what your browser
supports, this site will run a check on your browser and tell you the
support your browser has for protocols, ciphers and SNI:
https://cc.dcsec.uni-hannover.de/
Twilio developer evangelist here.
Good news, Twilio now supports SNI! So, this should no longer be a problem.
You might want to check Server Name Indication (SNI) Twilio does not support this, so as a result you get 502 Bad Gateway. Same thing was happening to me. I was able to fix this using Cloud flare Pro see this post
Twilio - TwiML with SNI Support
I hope someone here had the question. I want to monitor one of iphone's application' internet (http) traffic, I know the application sends out http request but I can't monitoring them, so now what tool I should use?
I tried fiddler but it seems the I can only get the first few request, I lose the traffic right after I logged in within that application.
So I can use fiddler to monitor iphone's browser traffice without any issue, but for applications I can't.
Try Charles HTTP proxy debugger. There's even a section in the help for iOS applications.
If you want to debug HTTPS traffic as well you'll need to right click on the requests in the list and select SSL proxying and then re-attempt the request.
I have been developing iOS for years but this is my first time building a backend for an app, so SSL subject matter isn't a strong point for me.
I have installed a SSL certificate on my IIS 8.0 (Server 2012). I have confirmed that the https endpoint is functioning properly.
My question: Is there anything I have to do in my iOS application (using RestKit 0.2 for server communication) other than change the endpoint from http to https? I'm not sure when I consider the traffic going to the server to be "secure". Bit of a noob question I know but, I don't want to miss something simple on the iOS side and think everything is secure when it is not.
Thanks for any help.
I want to record web requests using fiddler of an iOS7 native app which using https protocol (with trusted certificates) to communicate with server. I could able to record the requests and after Https decryption option disabled and its worked fine. When Https decryption option enabled app shows invalid/untrusted certifificate alert and cannot proceed even after installing fiddler certificate in iOS.
Question is,
Is there any way to record Https request/response of iOS7 app using fiddler by imitating any other certificate as trusted certificate or anyother way to do that? any suggestions? any other tools? I got another solution from here but it was not worked.
Thanks in advance
You need to use the Fiddler Certificate Maker add-on to generate certificates that iOS is willing to trust.
See http://blogs.telerik.com/fiddler/posts/12-12-21/using-fiddler-with-apple-ios-devices for more information.
Also keep in mind that some iOS applications (like the AppStore) use a technique called "Certificate Pinning" which means that you cannot decrypt their traffic seamlessly unless you jailbreak the device.