Apple 的 3/29/21 HTTP/2 证书更改需要哪些根 CA 证书?
Which Root CA certs required for Apple's 3/29/21 HTTP/2 cert change?
我四处寻找,发现了几个相关问题,主要是关于 Azure 或 Firebase,但是,有些用户(我自己就是其中之一)直接向 Apple 发送 HTTP/2 推送通知数据。
我们需要安装所有三个根 CA 还是只需要 AAACertificateServices 5/12/2020
?
21 年 2 月 10 日,我们收到了以下电子邮件:
On March 29, 2021, token and certificate-based HTTP/2 connections to
the Apple Push Notification service must incorporate the new root
certificate (AAACertificateServices 5/12/2020) which replaces the old
GeoTrust Global CA root certificate. To ensure a seamless transition
and to avoid push notification delivery failures, verify that both the
old and new root certificates for the HTTP/2 interface are included in
the Trust Store of each of your notification servers before March 29.
Note that Apple Push Notification service SSL provider certificates
issued to you by Apple do not need be to updated at this time.
Learn more about connecting to APNs.
If you have any questions, contact us.
Best regards, Apple Developer Relations
在上面链接的页面 (also here) 上列出了三个可供下载的证书:
Comodo RSA 和 USERTrust RSA 证书都对 AAA 证书服务具有证书路径依赖性:
我们需要安装所有三个根 CA 还是只需要 AAACertificateServices 5/12/2020
?
谢谢!
在您收到的邮件中,link 被命名为 (AAACertificateServices 5/12/2020),因此这是您唯一需要的证书。
您也可以查看邮件中的另一个link:Learn more about connecting to APNs。 建立与 APN 的可信连接 部分下有更多信息。
编辑:
另请参阅 this answer 开发者论坛。
我四处寻找,发现了几个相关问题,主要是关于 Azure 或 Firebase,但是,有些用户(我自己就是其中之一)直接向 Apple 发送 HTTP/2 推送通知数据。
我们需要安装所有三个根 CA 还是只需要 AAACertificateServices 5/12/2020
?
21 年 2 月 10 日,我们收到了以下电子邮件:
On March 29, 2021, token and certificate-based HTTP/2 connections to the Apple Push Notification service must incorporate the new root certificate (AAACertificateServices 5/12/2020) which replaces the old GeoTrust Global CA root certificate. To ensure a seamless transition and to avoid push notification delivery failures, verify that both the old and new root certificates for the HTTP/2 interface are included in the Trust Store of each of your notification servers before March 29.
Note that Apple Push Notification service SSL provider certificates issued to you by Apple do not need be to updated at this time.
Learn more about connecting to APNs.
If you have any questions, contact us.
Best regards, Apple Developer Relations
在上面链接的页面 (also here) 上列出了三个可供下载的证书:
Comodo RSA 和 USERTrust RSA 证书都对 AAA 证书服务具有证书路径依赖性:
我们需要安装所有三个根 CA 还是只需要 AAACertificateServices 5/12/2020
?
谢谢!
在您收到的邮件中,link 被命名为 (AAACertificateServices 5/12/2020),因此这是您唯一需要的证书。
您也可以查看邮件中的另一个link:Learn more about connecting to APNs。 建立与 APN 的可信连接 部分下有更多信息。
编辑:
另请参阅 this answer 开发者论坛。