IBM MobileFirst HTTPS问题 [英] IBM MobileFirst HTTPS issue

问题描述

目前我们的后端服务器（7.1）已使用SSL进行设置，我们已设法通过HTTPS访问操作控制台和应用中心控制台，没有任何问题。

Currently our backend server (7.1) has been setup using SSL and we had manage to access the operation console and app center console via HTTPS without any problem.

但是从应用程序，每当应用程序启动它将导致连接失败错误。已使用HTTPS协议重建应用程序以连接到后端。使用HTTP的早期版本运行良好。

However from the app, whenever the app launch it will throw a connection failed error. The app has been rebuilt using the HTTPS protocol to connect to the backend. Previous version that uses HTTP works well.

从日志中我们发现此行：

From the log we found this line:

Response Error : An SSL error has occurred and a secure connection to the server cannot be made.

经过一番搜索，我发现这是 page ，其中指出该问题是由iOS ATS引起的政策，我需要根据Apple的标准设置SSL。

After some search, I found this page which states that the issue is caused by the iOS ATS policy, and i would need to setup the SSL according to Apple's criteria.

按照指示设置服务器后，我重新启动服务器并重试。改为获得以下问题：

After setting up the server as per instructed, i restarted the server and retry. Getting the below issue instead:

CWWKO0801E: Unable to initialize SSL connection. Unauthorized access was denied or security settings have expired. Exception is javax.net.ssl.SSLHandshakeException: no cipher suites in common

我担心的是，因为在应用程序，我们打开ATS的任意负载，因此它不应该检查ATS设置。为什么应用程序仍然抛出SSL错误？

My concern is, since on the App, we have turn on the Arbitrary load for ATS, and as such it should not be checking the ATS setting. Why is the app still throwing the SSL error?

推荐答案

在info.plist文件中，用以下内容替换现有的NSAppTransportSecurity密钥： p>

In your info.plist file replace the existing NSAppTransportSecurity key with:

<key>NSAppTransportSecurity</key>
    <dict>
        <key>NSAllowsArbitraryLoads</key>
        <true/>
    </dict>

问题将得到解决。

修改：

如果您能够在服务器上启用SSL，请遵循以下文档：

In case you were able to enable SSL on the server, then following this doc:

http://www.ibm.com/support/knowledgecenter/SSHS8R_7.1.0/com.ibm.worklight.dev.doc/dev/t_enforce_TLS.html

您需要将以下配置添加到您的info.plist中：

you need to add the following config to your info.plist:

<key>protocol</key>
<string>https</string>

<key>port</key>
<string>10443</string>

端口将是您的防火墙端口

The Port will be your firewall port

这篇关于IBM MobileFirst HTTPS问题的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！