NSExceptionAllowsInsecureHTTPLoads

Discussion

Set the value for this key to YES to allow insecure HTTP loads for the given domain, or to be able to loosen the server trust evaluation requirements for HTTPS connections to the domain, as described in Performing manual server trust authentication.

Using this key doesn’t by itself change default server trust evaluation requirements for HTTPS connections, described in Ensure the Network Server Meets Minimum Requirements. Using only this key also doesn’t change the TLS or forward secrecy requirements imposed by ATS. As a result, you might need to combine this key with the NSExceptionMinimumTLSVersion or NSExceptionRequiresForwardSecrecy key in certain cases.

This key is optional. The default value is NO.

See Also

Exceptions

• NSExceptionMinimumTLSVersion
• NSExceptionRequiresForwardSecrecy
• NSRequiresCertificateTransparency
• NSExceptionRequiresNIAPTLSPackageVersion