2.2 Authenticator Application Workspace Setup

This topic describes the systematic instruction to Authenticator Application Workspace Setup option.

  1. Unzip and navigate to iOS workspace as shipped in installer.
  2. Open the workspace as shown below and find and replace the following generated UI files from “ui/dist” folder:
    • components
    • css
    • framework
    • images
    • pages
    • resources

    Description of mnios28.png follows
    Description of the illustration mnios28.png

  3. Double click on OBDXSecureAuthenticator.xccodeproj to open the project in Xcode.
    Description of mnios29.png follows
    Description of the illustration mnios29.png

  4. Update HOTP or TOTP as per Bank’s configured authentication mechanism in above screenshots for “otp-settings” key in “app.plist”. HOTP is for Random Based Soft Token authentication. TOTP is for Time based Soft Token Authentication.
  5. shared_server_url_url = <bank’s https URL>
  6. Set value of max_no_attempts to value greater than 0.

    Server_type - OBDXTOKEN. Do not change this.

  7. DOMAIN_BASED_CATEGORIZATION – YES. Do not change this.
  8. Create certificates and profiles on Apple Developer account. Use the bundle identifier in project settings and select appropriate profile in the application
  9. Bundle identifiers need to be added in the Info.plist of each the frameworks
  10. For example, let us assume that the bundle identifier used is abc.def.ghi.jkl. The steps to be followed are,
    1. Right click on ObdxAuthenticator.xcframework(in Xcode’s Project Navigator) → Show in Finder
    2. When the Finder directory click on ios-arm64 folder → ObdxAuthenticator.framework.
    3. Open Info.plist and set Bundle identifier as abc.def.ghi.jkl.ObdxAuthenticator
    4. Follow same for Cordova.xcframework and set Bundle identifier for Cordova.framework: abc.def.ghi.jkl.Cordova
  11. Also, set the identifiers and select appropriate profile in the target → Signing & Capabilities tab as show below:
  12. The application contains frameworks for devices and simulator both. Run the application directly on simulator without copying any other additional frameworks.
  13. For SSL pinning settings follow section 2.4_Using_SSL_in_Authenticator_App. Note: SSLPinning will get enabled after setting the certificate and Pinned URL. There is no additional flag to enable disable SSLPinning. It is expected to have a valid SSL certificate on the server. This certificate needs to be issued from an authorized authority. Self-signed SSL certificates are by default rejected by Apple OS.
  14. The application can be archived using steps in section: Archiving Authenticator Application for running on device.
  15. For production application, it is recommended to disable “NSAllowsArbitraryLoads” in “OBDXSecureAuthenticator-Info.plist”.
  16. InspectableWebView property is set to false in config.xml for production ready application.
    • App icons, splash images are updated.
  17. Update App Icons, Splash Images in the workspace as per bank’s requirement.
    Description of mnios29-1.png follows
    Description of the illustration mnios29-1.png

Parent topic: OBDX Authenticator Application (Futura Secure)