Jakub Truhlář Jakub Truhlář - 1 month ago 18
iOS Question

Is the apple-app-site-association implementation safe?

By implementing universal links, you end up with an

apple-app-site-association
file that you put in the root of your server. The file contains both
bundleID
and
teamID
. Is this safe?

I can clearly download e.g. Google’s one and get their IDs since the scenario is always the same.

Answer

There is no security risk from displaying the bundle ID and team ID. It is not possible to use these two pieces of information for anything (either productive or dangerous) without also having access to your Apple Developer account password.

Comments