Yes it works.
Thanks for the hint.
Safari first asks me to accept the server certificate.
second step it warns me that the web site demands a client certificate and asks
me to choose one from a list.
once selected i am prompted for user name and password from the server.
Which is the intended process.
I get the proper challenge from NSURLConnection delegate selectors.
somehow my application does not find the certificates when it is being
challenged for the client certificate.
I must be doing something wrong in the lookup.
to be honest all this authentication is still a little blurry for me at this
point.
I understand the concept...where should i look up for the
certificates/credentials...
it is somewhere else than the keychain ?
to query the keychain I currently use...
[NSDictionary dictionaryWithObjectsAndKeys:
(id) kSecClassIdentity, kSecClass,
kSecMatchLimitAll, kSecMatchLimit,
kCFBooleanTrue, kSecReturnRef, nil],
[NSDictionary dictionaryWithObjectsAndKeys:
(id) kSecClassCertificate, kSecClass,
kSecMatchLimitAll, kSecMatchLimit,
kCFBooleanTrue, kSecReturnRef, nil],
both query come back empty.
Added info:
The Configuration profile's Identity is the same as the Bundle
identifier and the
Entitlements application-identifier and the keychain-access-groups
as i read, the applications only access keychains for their access
groups.
if that makes a difference...
Sandro.
On 2010-11-03, at 11:51 AM, Sandro Noël wrote:
>>
>> When you tell "Install certificate", I guess you mean "Certificate and
>> private key" isn't it ?
>
> Yes the p12.
>
>>
>> Does it works if you try to log using Safari ? I'm using it to access https
>> with cert based auth, and don't get any problem.
>
> Will try that and get back with the report.
>
> Sandro.
>
> _______________________________________________
>
> Cocoa-dev mailing list (Cocoa-dev@lists.apple.com)
>
> Please do not post admin requests or moderator comments to the list.
> Contact the moderators at cocoa-dev-admins(at)lists.apple.com
>
> Help/Unsubscribe/Update your Subscription:
> http://lists.apple.com/mailman/options/cocoa-dev/apple.lists%40gestosoft.com
>
> This email sent to apple.li...@gestosoft.com
_______________________________________________
Cocoa-dev mailing list (Cocoa-dev@lists.apple.com)
Please do not post admin requests or moderator comments to the list.
Contact the moderators at cocoa-dev-admins(at)lists.apple.com
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/cocoa-dev/archive%40mail-archive.com
This email sent to arch...@mail-archive.com
