EMFastTrackTlsConfiguration Class Reference
EMFastTrackTlsConfiguration
@interface EMFastTrackTlsConfiguration : NSObjectA class representing a TLS configuration.
Since
5.3-
Constructs a
EMFastTrackTlsConfigurationobject whose settings are allNO.This is the most secure configuration for the communication link.
Declaration
Objective-C
- (nonnull instancetype)init;Swift
convenience init()Return Value
New instance of a
EMFastTrackTlsConfiguration. -
Constructs a
EMFastTrackTlsConfigurationobject whose settings are allNO, with ability to set timeout interval.This is the most secure configuration for the communication link.
Since
5.3
Declaration
Objective-C
- (nonnull instancetype)initWithTimeout:(NSTimeInterval)timeout;Swift
convenience init(timeout: TimeInterval)Parameters
timeoutThe timeout of the connection in seconds.
Return Value
New instance of a EMFastTrackTlsConfiguration.
-
Constructs a
EMFastTrackTlsConfigurationobject whose settings are configured in this constructor.Warning
It is not recommended to override these settings in a production environment. Allowing any of these configurations will reduce the security of the communication link with the server.Warning
The insecure permits could only used in debug build for test purpose. They were not allowed to be used in release mode since 3.0 version.
Declaration
Objective-C
- (nonnull instancetype) initWithInsecureConnectionAllowed:(BOOL)insecureConnectionAllowed selfSignedCertAllowed:(BOOL)selfSignedCertAllowed hostnameMismatchAllowed:(BOOL)hostnameMismatchAllowed;Swift
convenience init(insecureConnectionAllowed: Bool, selfSignedCertAllowed: Bool, hostnameMismatchAllowed: Bool)Parameters
insecureConnectionAllowedIf
YES, then either an unencrypted (http) or an encrypted (https) connection is allowed. IfNO, then only encrypted connections are allowed.selfSignedCertAllowedIf
YES, then a connection will accept a self signed server certificate. IfNO, then a connection whose server certificate is not signed by a certificate authority on the device is rejected.hostnameMismatchAllowedIf
YES, then a connection will accept a server certificate whose common name (CN) does not match the URL’s domain. IfNO, then a connection whose server certificate’s CN does not match the URL’s domain is rejected. This setting is ignored if self signed certificates are allowed.Return Value
New instance of a EMFastTrackTlsConfiguration.
-
Constructs a
EMFastTrackTlsConfigurationobject whose settings are configured in this constructor.Warning
It is not recommended to override these settings in a production environment. Allowing any of these configurations will reduce the security of the communication link with the server.Warning
The insecure permits could only used in debug build for test purpose. They were not allowed to be used in release mode since 3.0 version.
Declaration
Objective-C
- (nonnull instancetype) initWithInsecureConnectionAllowed:(BOOL)insecureConnectionAllowed selfSignedCertAllowed:(BOOL)selfSignedCertAllowed hostnameMismatchAllowed:(BOOL)hostnameMismatchAllowed timeout:(NSTimeInterval)timeout;Swift
convenience init(insecureConnectionAllowed: Bool, selfSignedCertAllowed: Bool, hostnameMismatchAllowed: Bool, timeout: TimeInterval)Parameters
insecureConnectionAllowedIf
YES, then either an unencrypted (http) or an encrypted (https) connection is allowed. IfNO, then only encrypted connections are allowed.selfSignedCertAllowedIf
YES, then a connection will accept a self signed server certificate. IfNO, then a connection whose server certificate is not signed by a certificate authority on the device is rejected.hostnameMismatchAllowedIf
YES, then a connection will accept a server certificate whose common name (CN) does not match the URL’s domain. IfNO, then a connection whose server certificate’s CN does not match the URL’s domain is rejected. This setting is ignored if self signed certificates are allowed.timeoutThe timeout of the connection in seconds.
Return Value
New instance of a EMFastTrackTlsConfiguration.
-
-initWithCertificates:insecureConnectionAllowed: selfSignedCertAllowed: hostnameMismatchAllowed: timeout: Constructs a EMFastTrackTlsConfiguration object whose settings are configured in this constructor. This API will do the certificate pinning check.
Warning
It is not recommended to override these settings in a production environment other than the certificates to pin. Allowing any of these configurations will reduce the security of the communication link with the server.Warning
The insecure permits could only used in debug build for test purpose. They were not allowed to be used in release mode since 3.0 version.Warning
iOS client only allows certificate from the content of file with the following format: X.509 Certificate (DER)Warning
iOS client does not support certificate from the content of file with the following format: (1) X.509 Certificate (PEM), (2) X.509 Certificate with chain (PEM), (3) X.509 Certificate (PKCS#7), and (4) X.509 Certificate with chain (PKCS#7).
Since
5.3
Declaration
Objective-C
- (nonnull instancetype)initWithCertificates:(nullable NSArray *)certificates insecureConnectionAllowed:(BOOL)insecureConnectionAllowed selfSignedCertAllowed:(BOOL)selfSignedCertAllowed hostnameMismatchAllowed:(BOOL)hostnameMismatchAllowed timeout:(NSTimeInterval)timeout;Swift
init(certificates: [Any]?, insecureConnectionAllowed: Bool, selfSignedCertAllowed: Bool, hostnameMismatchAllowed: Bool, timeout: TimeInterval)Parameters
certificatesList of certificates data to be checked for pinning.
insecureConnectionAllowedIf
YES, then either an unencrypted (http) or an encrypted (https) connection is allowed. IfNO, then only encrypted connections are allowed.selfSignedCertAllowedIf
YES, then a connection will accept a self signed server certificate. IfNO, then a connection whose server certificate is not signed by a certificate authority on the device is rejected.hostnameMismatchAllowedIf
YES, then a connection will accept a server certificate whose common name (CN) does not match the URL’s domain. IfNO, then a connection whose server certificate’s CN does not match the URL’s domain is rejected. This setting is ignored if self signed certificates are allowed.timeoutThe timeout of the connection in seconds.
Return Value
New instance of a EMFastTrackTlsConfiguration.
-
Whether or not an insecure connection is allowed.
Declaration
Objective-C
@property (readonly, getter=isInsecureConnectionAllowed, nonatomic) BOOL insecureConnectionAllowed;Swift
var isInsecureConnectionAllowed: Bool { get }Return Value
If
YES, then either an unencrypted (http) or an encrypted (https) connection is allowed. IfNO, then only encrypted connections are allowed. -
Whether or not self signed certificate is allowed.
Declaration
Objective-C
@property (readonly, getter=isSelfSignedCertAllowed, nonatomic) BOOL selfSignedCertAllowed;Swift
var isSelfSignedCertAllowed: Bool { get }Return Value
If
YES, then a connection will accept a self signed server certificate. IfNO, then a connection whose server certificate is not signed by a certificate authority on the device is rejected. -
Whether or not to allow mismatch between common name (CN) of the server certificates and domain name of the URL.
Declaration
Objective-C
@property (readonly, getter=isHostnameMismatchAllowed, nonatomic) BOOL hostnameMismatchAllowed;Swift
var isHostnameMismatchAllowed: Bool { get }Return Value
If
YES, then a connection will accept a server certificate whose common name (CN) does not match the URL’s domain. IfNO, then the connection is rejected. This setting is ignored if self signed certificates are allowed. -
Gets the timeout of the connection.
Declaration
Objective-C
@property (readonly, nonatomic) NSTimeInterval timeout;Swift
var timeout: TimeInterval { get }Return Value
Returns the timeout in seconds.
-
Get the certificates.
Since
5.3Declaration
Objective-C
@property (readonly, nonatomic, nullable) NSArray *certificates;Swift
var certificates: [Any]? { get }Return Value
Returns the certificates.