How can I add NSAppTransportSecurity to my info plist file

Question

https   developer apple com videos wwdc 2015  id 711  5 55  I can t seem to be able to add this to my info plist  There is no value it  I m running XCode Version 7 0 beta  7A121l   and testing on iOS9   Because I can t specifically declare what URL s I want as seen in the video  I keep getting  App Transport Security has blocked a cleartext HTTP  http     resource load since it is insecure  Temporary exceptions can be configured via your app s Info plist file  errors   However  I don t seem to be able to configure it  Any ideas

User · Answer

Just to clarify     You should always use httpS   But you can bypass it adding the exception

User · Answer

To explain a bit more about ParaSara s answer  App Transport security will become mandatory and trying to turn it off may get your app rejected    As a developer  you can turn App Transport security off if your networking code doesn t work with it  and you want to continue other development before fixing any problems  Say in a team of five  four can continue working on other things while one fixes all the problems  You can also turn App Transport security off as a debugging tool if you have networking problems and you want to check if they are caused by App Transport security  As soon as you know you should turn it on again immediately    The solution that you must use in the future is not to use http at all  unless you use a third party server that doesn t support https  If your own server doesn t support https  Apple will have a problem with that  Even with third party servers  I wouldn t bet that Apple accepts it    Same with the various checks for server security  At some point Apple will only accept justifiable exceptions    But mostly  consider this  You are endangering the privacy of your customers  That s a big no-no in my book  Don t do that  Fix your code  don t ask for permission to run unsafe code

User · Answer

You have to add just the NSAllowsArbitraryLoads key to YES in NSAppTransportSecurity dictionary in your info plist file   For example     lt key gt NSAppTransportSecurity lt  key gt    lt dict gt         lt key gt NSAllowsArbitraryLoads lt  key gt        lt true  gt    lt  dict gt

User · Answer

Open your info plist file of your project with any editor of your preference  then add this code at the end of the file before the last  lt key gt NSAppTransportSecurity lt  key gt   lt dict gt      lt key gt NSAllowsArbitraryLoads lt  key gt   lt true  gt   lt  dict gt

User · Answer

lt key gt NSAppTransportSecurity lt  key gt   lt dict gt       lt key gt NSExceptionDomains lt  key gt       lt dict gt           lt key gt com lt  key gt           lt dict gt               lt key gt NSTemporaryExceptionAllowsInsecureHTTPLoads lt  key gt               lt true  gt           lt  dict gt           lt key gt net lt  key gt           lt dict gt               lt key gt NSTemporaryExceptionAllowsInsecureHTTPLoads lt  key gt               lt true  gt           lt  dict gt           lt key gt org lt  key gt           lt dict gt               lt key gt NSTemporaryExceptionAllowsInsecureHTTPLoads lt  key gt               lt true  gt           lt  dict gt       lt  dict gt   lt  dict gt    This will allow to connect to  com  net  org

User · Answer

lt key gt NSAppTransportSecurity lt  key gt       lt dict gt           lt key gt NSExceptionDomains lt  key gt           lt dict gt               lt key gt uservoice com lt  key gt               lt dict gt                   lt key gt NSIncludesSubdomains lt  key gt                   lt true  gt                   lt key gt NSExceptionRequiresForwardSecrecy lt  key gt                   lt false  gt               lt  dict gt           lt  dict gt       lt  dict gt

User · Answer

try With this --- worked for me in Xcode-beta 4 7 0   lt key gt NSAppTransportSecurity lt  key gt   lt dict gt       lt key gt NSExceptionDomains lt  key gt       lt dict gt           lt key gt yourdomain com lt  key gt           lt dict gt               lt  --Include to allow subdomains-- gt               lt key gt NSIncludesSubdomains lt  key gt               lt true  gt               lt  --Include to allow HTTP requests-- gt               lt key gt NSTemporaryExceptionAllowsInsecureHTTPLoads lt  key gt               lt true  gt               lt  --Include to specify minimum TLS version-- gt               lt key gt NSTemporaryExceptionMinimumTLSVersion lt  key gt               lt string gt TLSv1 1 lt  string gt           lt  dict gt       lt  dict gt   lt  dict gt    Also one more option  if you want to disable ATS you can use this     lt key gt NSAppTransportSecurity lt  key gt      lt dict gt           lt key gt NSAllowsArbitraryLoads lt  key gt  lt true  gt      lt  dict gt    But this is not recommended at all  The server should have the SSL certificates and so that there is no privacy leaks

User · Answer

Xcode 8 2  iOS 10   lt key gt NSAppTransportSecurity lt  key gt   lt dict gt       lt key gt NSAllowsArbitraryLoads lt  key gt       lt true  gt   lt  dict gt

User · Answer

One bad news for developers using NSAppTransportSecurity   UPDATE   Apple will require HTTPS connections for iOS apps by the end of 2016    https   techcrunch com 2016 06 14 apple-will-require-https-connections-for-ios-apps-by-the-end-of-2016

User · Answer

XCODE 8  Swift 3  You need to add a row          App transport Security Setting       in the info plist inside information Property list

User · Answer

That wasn t working for me  but this did the trick    lt key gt NSAppTransportSecurity lt  key gt          lt dict gt               lt key gt NSAllowsArbitraryLoads lt  key gt  lt true  gt          lt  dict gt

User · Answer

In mac shell command line   use the following command   plutil -insert NSAppTransportSecurity -xml   lt array gt  lt string gt  hidden  lt  string gt  lt  array gt    location of your xcode project  Info plist    The command will add all the necessary values into your plist file

User · Answer

Update Answer  after wwdc 2016    IOS apps will require secure HTTPS connections by the end of 2016   App Transport Security  or ATS  is a feature that Apple introduced in iOS 9  When ATS is enabled  it forces an app to connect to web services over an HTTPS connection rather than non secure HTTP   However  developers can still switch ATS off and allow their apps to send data over an HTTP connection as mentioned in above answers  At the end of 2016  Apple will make ATS mandatory for all developers who hope to submit their apps to the App Store  link

User · Answer

Xcode 9 2  Swift 4  this works for me    lt key gt App Transport Security Settings lt  key gt   lt dict gt       lt key gt Allow Arbitrary Loads lt  key gt       lt true  gt   lt  dict gt

[ios] How can I add NSAppTransportSecurity to my info.plist file?

Examples related to ios

Examples related to objective-c

Examples related to xcode

Examples related to ios9