iOS9 getting error an SSL error has occurred and a secure connection to the server cannot be made

Question

Since I upgraded my existing project with iOS 9  I keep getting the error       An SSL error has occurred and a secure connection to the server cannot be made

User · Answer

It appears that iOS 9 0 2 breaks requests to valid HTTPS endpoints  My current suspicion is that it is requiring SHA-256 certs or it fails with this error   To reproduce  inspect your UIWebView with safari  and try navigating to an arbitrary HTTPS endpoint   location href    https   d37gvrvc0wt4s1 cloudfront net js v1 4 rollbar min js      Error  Failed to load resource  An SSL error has occurred and a secure connection to the server cannot be made   rollbar min js  line 0    Now try going to google  because of course they have a SHA-256 cert    location href    https   google com     no problemo   Adding an exception to transport security  as outlined by  st  phane-bruckert s answer above  works to fix this  I also assume that completely disabling NSAppTransportSecurity would work too  though I ve read that completely disabling it can jeopardize your app review    EDIT  I ve found that simply enumerating the domains I m connecting to in the NSExceptionDomains dict fixes this problem  even when leaving NSExceptionAllowsInsecureHTTPLoads set to true

User · Answer

For the iOS9  Apple made a radical decision with iOS 9  disabling all unsecured HTTP traffic from iOS apps  as a part of App Transport Security  ATS    To simply disable ATS  you can follow this steps by open Info plist  and add the following lines    lt key gt NSAppTransportSecurity lt  key gt     lt dict gt         lt key gt NSAllowsArbitraryLoads lt  key gt         lt true  gt     lt  dict gt

User · Answer

iOS 9 forces connections that are using HTTPS to be TLS 1 2 to avoid recent vulnerabilities  In iOS 8 even unencrypted HTTP connections were supported  so that older versions of TLS didn t make any problems either  As a workaround  you can add this code snippet to your Info plist    lt key gt NSAppTransportSecurity lt  key gt   lt dict gt       lt key gt NSAllowsArbitraryLoads lt  key gt       lt true  gt   lt  dict gt     referenced to App Transport Security  ATS

User · Answer

I get the same error when I specify my HTTPS URL as   https   www mywebsite com   However it works fine when I specify it without the three W s as   https   mywebsite com

User · Answer

If you are just targeting specific domains you can try and add this in your application s Info plist    lt key gt NSAppTransportSecurity lt  key gt   lt dict gt       lt key gt NSExceptionDomains lt  key gt       lt dict gt           lt key gt example com lt  key gt           lt dict gt               lt key gt NSExceptionRequiresForwardSecrecy lt  key gt               lt false  gt               lt key gt NSIncludesSubdomains lt  key gt               lt true  gt           lt  dict gt       lt  dict gt   lt  dict gt

User · Answer

I was getting below error on playback finished with error  -1200  Error Domain NSURLErrorDomain Code -1200  quot An SSL error has occurred and a secure connection to the server cannot be made  quot  UserInfo  NSErrorFailingURLStringKey https   remote-abcabc-svc an abc com 1935 abr  definst  smil v2 video 492F2F82592F59EA74ABAA6B9D6E6F42 F6B1BD452132329FBACD32730862CAE0 091EAD80FE9BEDD52A2F33840CA3CBAC v3 eng smil playlist m3u8  NSLocalizedRecoverySuggestion Would you like to connect to the server anyway    kCFStreamErrorDomainKey 3   NSURLErrorFailingURLSessionTaskErrorKey LocalDataTask  lt 692A1174-DA1C-4267-9560-9020A79F8458 gt   lt 1 gt    NSURLErrorRelatedURLSessionTaskErrorKey        quot LocalDataTask  lt 692A1174-DA1C-4267-9560-9020A79F8458 gt   I made sure that I added entry in exception domains in plist file and NSAllowsArbitraryLoads is set to true and still I was seeing an error  Then I realized that I am playing URL with https and not http  I set video url to http and problem solved

User · Answer

The problem is the ssl certificate on server side  Either something is interfering or the certificate doesn t match the service  For instance when a site has a ssl cert for www mydomain com while the service you use runs on myservice mydomain com  That is a different machine

User · Answer

Even though allowing arbitrary loads  NSAllowsArbitraryLoads   true  is a good workaround  you shouldn t entirely disable ATS but rather enable the HTTP connection you want to allow    lt key gt NSAppTransportSecurity lt  key gt   lt dict gt     lt key gt NSExceptionDomains lt  key gt     lt dict gt       lt key gt yourserver com lt  key gt       lt dict gt         lt  --Include to allow subdomains-- gt         lt key gt NSIncludesSubdomains lt  key gt         lt true  gt         lt  --Include to allow HTTP requests-- gt         lt key gt NSTemporaryExceptionAllowsInsecureHTTPLoads lt  key gt         lt true  gt         lt  --Include to specify minimum TLS version-- gt         lt key gt NSTemporaryExceptionMinimumTLSVersion lt  key gt         lt string gt TLSv1 1 lt  string gt       lt  dict gt     lt  dict gt   lt  dict gt

User · Answer

My issue was NSURLConnection and that was deprecated in iOS9 so i changed all the API to NSURLSession and that fixed my problem   NSURLConnection deprecated in iOS9

User · Answer

In my case I faced this issue in my simulator because my computer s date was behind of current date  So do check this case too when you face SSL error

User · Answer

Xcode project -  goto info plist and Click   Button then Add  App Transport Security Settings Expand  Allow Arbitrary Loads Set YES  Thanks

User · Answer

I was getting this error for some network calls and not others  I was connected to a public wifi  That free wifi seemed to bee tampering with certain URLs and hence the error  When I connected to LTE that error went away

[ios] iOS9 getting error “an SSL error has occurred and a secure connection to the server cannot be made”

Examples related to ios

Examples related to ssl-certificate

Examples related to app-transport-security