iOS 9.3 : An SSL error has occurred and a secure connection to the server cannot be made
I am getting following error with self signed certificate
Error Domain=NSURLErrorDomain Code=-1200 "An SSL error has occurred and a secure connection to the server cannot be made.
while testing web-services for one of my demo app with
- iOS 9.3
- XCode 7.3
- Swift 2.2
- Alamofire 3.3.0
- and Local server : https://filename.hostname.net
Note: before assuming its Duplicate, I would request please read it all the way,even same i have reported to apple dev forums
Using Alamofire Library
func testAlamofireGETRequest() -> Void
{
Alamofire.request(.GET, "https://filename.hostname.net/HelloWeb/service/greeting/john")
.responseJSON
{ response in
print("Response JSON: \(response.result.value)")
}
}
Using NSURLSession
func testNSURLSessionRequest() -> Void {
let session = NSURLSession.sharedSession()
let urlString = "https://filename.hostname.net/HelloWeb/service/greeting/john"
let url = NSURL(string: urlString)
let request = NSURLRequest(URL: url!)
let dataTask = session.dataTaskWithRequest(request) { (data:NSData?, response:NSURLResponse?, error:NSError?) -> Void in
print("done, error: \(error)")
//Error Domain=NSURLErrorDomain Code=-1200 "An SSL error has occurred and a secure connection to the server cannot be made.
}
dataTask.resume()
}
I spent 2 days with no luck :(
there are bunch of questions already posted but nothing worked for me
- Transport Security has Blocked a cleartext HTTP
- iOS9 getting error “an ssl error has occurred and a secure connection to the server cannot be made”
- How do I load an HTTP URL with App Transport Security enabled in iOS 9? [duplicate]
- CFNetwork SSLHandshake failed iOS 9
- How to handle “CFNetwork SSLHandshake failed” in iOS
- Making HTTPS request in iOS 9 with self-signed certificate
- ios9 self signed certificate and app transport security
posted Alamofire git issue
- 'CFNetwork SSLHandshake failed (-9847)' error when performing a non-SSL request #538
- Self-Signed Certificate not accepted #876
- how can I connecting my server as HTTPS with using self-signed Certificate file #977
My Info.pist file is updated for ATS settings this way
<key>NSAppTransportSecurity</key>
<dict>
<key>NSExceptionDomains</key>
<dict>
<key>filename.hostname.net</key>
<dict>
<key>NSExceptionRequiresForwardSecrecy</key>
<false/>
<key>NSExceptionAllowsInsecureHTTPLoads</key>
<true/>
<key>NSIncludesSubdomains</key>
<true/>
<key>NSTemporaryExceptionAllowsInsecureHTTPLoads</key>
<true/>
</dict>
</dict>
</dict>
Meanwhile I am able to get response for
http://filename.hostname.net
and https://google.com
but not for https://filename.hostname.net
Can anyone please suggest me why I am not able to get this working after huge efforts?
Answer
At the command-line in OS X, run the following:
nscurl --ats-diagnostics https://filename.hostname.net --verbose
This will tell you what combinations of ATS settings will and will not permit iOS to access your site, and should point you towards what is wrong with your site.
It could be one or more of the following
- Certificate hash algorithm (must be SHA-256 or above)
- TLS version (must be 1.2)
- TLS algorithms (must provide Perfect Forward Secrecy)