Handoff APIs should allow wildcards instead of requiring fully qualified domain names
| Originator: | jason.sadler | ||
| Number: | rdar://17870341 | Date Originated: | July 31, 2014 |
| Status: | Open | Resolved: | |
| Product: | iOS SDK | Product Version: | 8.0 beta 4 |
| Classification: | Reproducible: | Always |
Summary: Many business-to-business web apps use a separate subdomain for each customer. For example, apple.myservice.com and beats-by-dre.myservice.com. Current handoff APIs such as the APIs around requesting safari saved passwords require the user to pass in a fully qualified domain name, and have a full list of FQDNs in their entitlements. This is impossible for B2B web apps like the one described above; the list of subdomains (and therefore the list of FQDNs) is variable and changes from day to day. Steps to Reproduce: 1. Read the documentation in SecSharedCredential.h and watch WWDC 2014 session 506 Expected Results: The FQDN used for the first parameter of SecRequestSharedWebCredential is allowed to have a wildcard character, and the list of associated-domains can include domains with wildcard characters Actual Results: The FQDN is apparently not allowed to have a wildcard character Version: iOS 8.0 beta 4 Notes: N/A Configuration: N/A
Comments
Please note: Reports posted here will not necessarily be seen by Apple. All problems should be submitted at bugreport.apple.com before they are posted here. Please only post information for Radars that you have filed yourself, and please do not include Apple confidential information in your posts. Thank you!