• Open Menu Close Menu
  • Apple
  • Shopping Bag
  • Apple
  • Mac
  • iPad
  • iPhone
  • Watch
  • TV
  • Music
  • Support
  • Search apple.com
  • Shopping Bag

Lists

Open Menu Close Menu
  • Terms and Conditions
  • Lists hosted on this site
  • Email the Postmaster
  • Tips for posting to public mailing lists
Authentication and NSURLConnection sendSynchronousRequest
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Authentication and NSURLConnection sendSynchronousRequest

  • Subject: Authentication and NSURLConnection sendSynchronousRequest
  • From: "Paul E. Robichaux" <email@hidden>
  • Date: Thu, 12 Jun 2008 11:35:00 -0400
  • Acceptlanguage: en-US
  • Thread-topic: Authentication and NSURLConnection sendSynchronousRequest
I¹m writing a simple demo application showing how to use some Exchange Web
Services (EWS) features in Cocoa. I am a total Cocoa n00b but have most of
the app and UI working, thanks to a lot of google-fu and my now-worn copy of
Hillegas' 3rd ed. I¹m having trouble authenticating to the actual EWS
server, though.

For simplicity¹s sake, I want to use sendSynchronousRequest. The docs say
that it has OEminimal support¹ for authentication. I¹m letting the user
provide their credentials, then storing them in an NSURLCredential. I then
add the NSURLCredential to the shared credential storage and define an
NSURLProtectionSpace with the FQDN of the EWS server.

When I actually call sendSynchronousRequest, I get an error if the EWS
server is using a self-signed certificate (as most probably will be). I did
some digging and it looks like one way to fix this is to override
allowsAnyHTTPSCertificateForHost so that it allows any certificate. I know
this is a bad idea from a security standpoint, but I'm OK with it in demo
code, suitably flagged. However, I'm doing something wrong when I override.

If I just stick this code

@implementation NSURLRequest(NSHTTPURLRequest)
+ (BOOL)allowsAnyHTTPSCertificateForHost:(NSString *)host
{
    return YES;
}
@end

At the end of one of my .m files, the code builds, though I get warnings
that some other methods aren't implemented. The program then gives me an
NSURLDomainError -1203, the description for which doesn't tell me anything
useful.

So, the actual questions:
1. Is there a safer or better-supported way for me to get a look at the
returned certificate besides overriding allowsAnyHTTPSCertificateForHost?

2. What am I doing wrong in my override attempt?

3. What does -1203 really *mean*?

Cheers,
-Paul

_______________________________________________

Cocoa-dev mailing list (email@hidden)

Please do not post admin requests or moderator comments to the list.
Contact the moderators at cocoa-dev-admins(at)lists.apple.com

Help/Unsubscribe/Update your Subscription:

This email sent to email@hidden
  • Follow-Ups:
    • Re: Authentication and NSURLConnection sendSynchronousRequest
      • From: Jens Alfke <email@hidden>
  • Prev by Date: Re: NSTreeController's arrangedObjects returning _NSControllerTreeProxy for KVC path?
  • Next by Date: Re: NSTreeController's arrangedObjects returning _NSControllerTreeProxy for KVC path?
  • Previous by thread: Re: FSEvent- FSEventStreamEventFlags
  • Next by thread: Re: Authentication and NSURLConnection sendSynchronousRequest
  • Index(es):
    • Date
    • Thread