-
-
Save flpwgr/6e73a3d52607288f64b5 to your computer and use it in GitHub Desktop.
| #!/bin/bash | |
| PLIST=platforms/ios/*/*-Info.plist | |
| cat << EOF | | |
| Add :NSAppTransportSecurity dict | |
| Add :NSAppTransportSecurity:NSAllowsArbitraryLoads bool YES | |
| EOF | |
| while read line | |
| do | |
| /usr/libexec/PlistBuddy -c "$line" $PLIST | |
| done | |
| true |
Change:
Add :NSAppTransportSecurity dict
Add :NSAppTransportSecurity:NSAllowsArbitraryLoads bool YES
To:
Add :NSAppTransportSecurity dict
Add :NSAppTransportSecurity:NSExceptionDomains dict
Add :NSAppTransportSecurity:NSExceptionDomains:example.com dict
Add :NSAppTransportSecurity:NSExceptionDomains:example.com:NSIncludesSubdomains bool YES
Add :NSAppTransportSecurity:NSExceptionDomains:example.com:NSExceptionAllowsInsecureHTTPLoads bool YES
Where example.com is the domain you want to whitelist
My app will be allowing users to enter a domain to connect to my custom Node.js server they would install. Is that a good exception to the App Transport Security feature? I have custom logic to verify they are connected to a port running my service and not some random HTTP apache host.
How could this be modified to add exceptions per domain?