You are here: Publishers > Basics > Mobile app publishers > App Transport Security (ATS)

App Transport Security (ATS)

Last updated on December 21, 2016

App Transport Security (ATS) is an iOS App Store default setting which prevents apps from making non-secure connections. As of January 1, 2017, iOS apps need to have ATS enabled. To enable ATS for your app, review and implement the changes described here. If you have any questions, please contact your OpenX Account Manager.

You can find more information about ATS within Apple's developer documentation, including the process for applying for an exception. If your app receives an exception, this exception also applies to your OpenX integration. You don't need to take any further action.

Important: Please contact your OpenX representative if you have not yet been migrated to an SSL-enabled delivery domain (one that ends in .openx.net).
Example: example-d.openx.net

Tag-based integrations

If your app serves ads via a tag-based integration, you must make your OpenX requests SSL-compliant by:

  1. Changing all references of HTTP to HTTPS.
  2. Ensuring you have an SSL-enabled delivery domain.

Example

After src=", this tag uses http, which is not SSL-compliant.

<script type="text/javascript" src="http://ox-d.your-instance.servedbyopenx.com/ma/1.0/jstag"></script>

​This tag becomes SSL-compliant after you change http to https and migrate to an SSL-enabled delivery domain, as shown below.

<script type="text/javascript" src="https://example-d.openx.net/ma/1.0/jstag"></script>​

Server-to-server (API) integrations

If your app serves ads via a server-to-server (S2S), or API integration, you must make your OpenX requests SSL-compliant by:

  1. Changing your request protocol from HTTP to HTTPS.
  2. Ensuring your have an SSL-enabled delivery domain.

Example

This request protocol is not SSL-compliant.

http://ox-d.your-instance.servedbyopenx.com/ma/1.0/​arj?auid=123456789​

This request protocol becomes SSL-compliant after you change http to https and migrate to an SSL-enabled delivery domain, as shown below.

https://example-d.openx.net/ma/1.0/​arj?auid=123456789​

This topic applies to Ad Exchange. This topic applies to Ad Server.

Feedback form