| commit | author | age | ||
| 2370e0 | 1 | // |
| H | 2 | // MQTTSSLSecurityPolicyTransport.h |
| 3 | // MQTTClient | |
| 4 | // | |
| 5 | // Created by Christoph Krey on 06.12.15. | |
| 6 | // Copyright © 2015-2016 Christoph Krey. All rights reserved. | |
| 7 | // | |
| 8 | ||
| 9 | #import "MQTTTransport.h" | |
| 10 | #import "MQTTSSLSecurityPolicy.h" | |
| 11 | #import "MQTTCFSocketTransport.h" | |
| 12 | ||
| 13 | /** MQTTSSLSecurityPolicyTransport | |
| 14 | * implements an extension of the MQTTCFSocketTransport by replacing the OS's certificate chain evaluation | |
| 15 | */ | |
| 16 | @interface MQTTSSLSecurityPolicyTransport : MQTTCFSocketTransport | |
| 17 | ||
| 18 | /** | |
| 19 | * The security policy used to evaluate server trust for secure connections. | |
| 20 | * | |
| 21 | * if your app using security model which require pinning SSL certificates to helps prevent man-in-the-middle attacks | |
| 22 | * and other vulnerabilities. you need to set securityPolicy to properly value(see MQTTSSLSecurityPolicy.h for more detail). | |
| 23 | * | |
| 24 | * NOTE: about self-signed server certificates: | |
| 25 | * if your server using Self-signed certificates to establish SSL/TLS connection, you need to set property: | |
| 26 | * MQTTSSLSecurityPolicy.allowInvalidCertificates=YES. | |
| 27 | */ | |
| 28 | @property (strong, nonatomic) MQTTSSLSecurityPolicy *securityPolicy; | |
| 29 | ||
| 30 | @end | |
