I'm new here and I'm facing a problem. I need to know if it is possible to implement the WS-Security protocol with X.509 certificates on a native iPhone application. I haven't found much information on the web, except this information from Apple about security services.
I just want to ask, is it possible? has it been made before?. If it is possible, can you point me in the right direction?.
Thanks in advance.
You should be able to implement this using OpenSSL.
There is a tutorial on The Rare AiR on how you can compile the library for iPhone.
Hope this helps,
Claus
Related
I'm using NSURLRequest in my current app which is in the App Store. I need to change to Https in the next version.
Do I need to declare "Encryption" in the Apple "upload binary" section when submitting the application?
I saw 2 related threads, but I'm not convinced with the answers there. If someone with real experience or knowledge could answer this one, it could be great..
Thanks.
This only concerns encryption within the application. If you're not doing any of that then you're OK.
https://itunesconnect.apple.com/docs/iTunesConnect_DeveloperGuide.pdf
No, they only want to know if you are implementing an encryption algorithm inside the app itself because there are various laws involved in what can be exported to where with regard to types of encryption.
I'd recommend asking Apple, but I suspect the answer is no.
Refer to Apple's Export Compliance FAQ (needs developer access).
I have come across a slight problem in my programming of an iPod Touch application. However I am very enthusiastic that it can be solved and that a nudge in the right direction will be of great help. I have experience with Objective C, XCode and the essential app builders included with XCode also.
My question is, as the title says, how do I log a user into youtube through my iPod Touch application? I have looked through the countless api documentation for youtube, objective c and many other google APIs. After all my searching for the last few days I have found that OAuth2 seems to be the most lightweight way to connect a user to youtube in an application. All it requires is the client id and client secret.
However, even knowing this, I am finding it difficult to understand the code needed to simply connect a user to youtube through my application. Could anyone perhaps suggest a sample code? Or point me in the right direction?
Kindest Regards,
Joey Tawadrous
Code samples are here:
http://code.google.com/p/gtm-oauth/wiki/GTMOAuthIntroduction#Signing_In_to_Google_Services
Additional info are here: http://code.google.com/p/gtm-oauth/ and here: http://code.google.com/p/gtm-oauth2/
Hope it will help you.
Can anyone tell me why this happen when i install the real device on my
blackberry.
I am using blackberry web/widget to develop app BB and the language that i used
is
phonegap which is support .html, .css, .javascript.
The app can be installed but after install the app does not have icon.
Then when click on run the error msg is,
“Error starting Carl’s Jr. Module CarlsJr attempt to access a secure api”
Any answer will be highly appreciated!
thanks,
regards,
Jamaley.
It sounds very much like you haven't signed your code.
RIM track the use of some sensitive BlackBerry APIs. This is indicated in the API reference documentation by a lock icon or are otherwise noted as "signed".
Please see the following url for more information about these keys and how to request yours
http://us.blackberry.com/developers/javaappdev/codekeys.jsp
Cheers
Ray
Is it possible to use XML-RPC calls in iPhone application (what approaches are the best)?
Are there any constraints with XML-RPC?
Thank you,
Paul
I have recently come across this library, take a look at the description at the end.
Hope you find it useful.
https://github.com/eczarny/xmlrpc
You might be interested in the WordPress for iOS app. It's completely open source and uses an XML-RPC library.
http://ios.wordpress.org/
Are there any legal problems using external crypto libs in my iPhone application? I know that Apple has to comply to US cryptography export rules but do I as a developer have any responsibility? How does it work?
If you use encryption in your app for anything other than authentication, then you'll need to declare it to Apple and you'll need to explain exactly what is encrypted, why, and how.
I think that's pretty much the most of it. It's then down to the export masters (I have no idea who actually manages this stuff) to decide if they will allow your app to be sold/distributed outside the US.