in reply to Re^2: Safari (apple) fails to set cookie from Mojo Lite app
in thread [Solved] Safari (apple) fails to set cookie from Mojo Lite app

 ... (where "secure" is defined by the user agent) ...

And so apple's definition of "secure", is that it is not enough to be under a TLS session (FF+Chrome work ok with my app) but also to be under a TLS session initiated with a "proper" SSL certificate. Not my petty self-signed one. Thanks.

Replies are listed 'Best First'.
Re^4: Safari (apple) fails to set cookie from Mojo Lite app
by sectokia (Friar) on Nov 14, 2024 at 02:35 UTC

    Not quite...

    You can use a self signed cert all you want.... But you need to add it on the iphone as a 'profile'.

    In particular you should create a self signed CA, then sign the server cert with the CA, then add the CA to the iphone as a profile.

    Certificates can be created for IP addresses as well, just check the cert is for IP:1.2.3.4 and not DNS:1.2.3.4, many people get this wrong and wonder why it doesn't work.

    Its better to use a host name, run a DNS server and set the iphone to use that DNS server to the resolve the host name.

    So it is possible to do full TLS with a verified CA in safari in a dev enivroment.

[reply]
Re^4: Safari (apple) fails to set cookie from Mojo Lite app
by karlgoethebier (Abbot) on Nov 13, 2024 at 16:48 UTC
[reply]

In Section Seekers of Perl Wisdom