feat(iOS): merge debug and release versions

Author: tompsota

README.md

@@ -14,11 +14,10 @@ freeRASP for React Native is a mobile in-app protection and security monitoring
   - [(Optional) Create a new React Native demo application](#optional-create-a-new-react-native-demo-application)
   - [Step 1: Install the plugin](#step-1-install-the-plugin)
   - [Step 2: Set up the dependencies](#step-2-set-up-the-dependencies)
-  - [Step 3: Dev vs Release version](#step-3-dev-vs-release-version)
-  - [Step 4: Import freeRASP into the app](#step-4-import-freerasp-into-the-app)
-  - [Step 5: Setup the configuration, callbacks and initialize freeRASP](#step-5-setup-the-configuration-callbacks-and-initialize-freerasp)
-  - [Step 6: Additional note about obfuscation](#step-6-additional-note-about-obfuscation)
-  - [Step 7: User Data Policies](#step-7-user-data-policies)
+  - [Step 3: Import freeRASP into the app](#step-3-import-freerasp-into-the-app)
+  - [Step 4: Setup the configuration, callbacks and initialize freeRASP](#step-4-setup-the-configuration-callbacks-and-initialize-freerasp)
+  - [Step 5: Additional note about obfuscation](#step-5-additional-note-about-obfuscation)
+  - [Step 6: User Data Policies](#step-6-user-data-policies)
 - [Security Report](#security-report)
 - [Enterprise Services](#bar_chart-enterprise-services)
   - [Commercial version](#commercial-version)
@@ -96,86 +95,56 @@ freeRASP React Native plugin uses Pods. Navigate to the `ios` folder and run:
 
     $ pod install
 
-## Step 3: Dev vs Release version
+## Step 3: Import freeRASP into the app
 
-The Dev version is used to not complicate the development process of the application, e.g. if you would implement killing of the application on the debugger callback. It disables some checks which won't be triggered during the development process:
+We provide a custom hook that handles all required logic as registration of freeRASP, mounting and unmounting of listeners for you. Import the hook into your app:
 
-- Emulator-usage (simulator)
-- Debugging (debug)
-- Signing (appIntegrity)
-- Unofficial store (unofficialStore)
+```ts
+import { useFreeRasp } from 'freerasp-react-native';
+```
 
-Which version of freeRASP is used is tied to the application's development stage - more precisely, how the application is compiled.
+## Step 4: Setup the configuration, callbacks and initialize freeRASP
 
-### Android
+First, the configuration and callbacks will be explained. Then the [Initialization](#initialization) chapter shows the implementation.
 
-Android implementation of the React Native plugin detects selected development stage and automatically applies the suitable version of the library.
+### Configuration
 
-- `npx react-native run-android` (debug) -> uses dev version of freeRASP
-- `npx react-native run-android --variant release` (release) -> uses release version of freeRASP
+You need to provide configuration for freeRASP to work properly and initialize it. The freeRASP configuration is an JavaScript object that contains configs for both Android and iOS, as well as common configuration. You must fill all the required values for the plugin to work. If you are developing for just one platform, you can skip configuration of the other.
 
-### iOS
+#### Android configuration:
 
-For the iOS implemtation, it's neccesary to add script into the Xcode environment, that automatically switches between the library dev/release versions according to selected development stage. Then, it is necessary to embedd a symlink to correct TalsecRuntime.xcframework.
-
-1.  Add pre-built script for changing the Debug and Release versions of the framework:
-    - Open up the **.xcworkspace** file
-    - Go to **Product** -> **Scheme** -> **Edit Scheme...** -> **Build (dropdown arrow)** -> **Pre-actions**
-    - Hit **+** and then **New Run Script Action**
-    - Set **Provide build setting from** to your application
-    - Copy-paste following script:
-      ```shell
-      cd "${SRCROOT}/../node_modules/freerasp-react-native/ios"
-      if [ "${CONFIGURATION}" = "Release" ]; then
-          rm -rf ./TalsecRuntime.xcframework
-          ln -s ./Release/TalsecRuntime.xcframework/ TalsecRuntime.xcframework
-      else
-          rm -rf ./TalsecRuntime.xcframework
-          ln -s ./Debug/TalsecRuntime.xcframework/ TalsecRuntime.xcframework
-      fi
-      ```
-    - **Close**
-2.  Add dependency on the symlink
-    - Go to your **Target** -> **Build Phases** -> **Link Binary With Libraries**
-    - Add dependency (drag & drop right after **libPods**) on the symlink on the following location:
-      _AwesomeProject/node_modules/freerasp-react-native/ios/TalsecRuntime.xcframework_
-    - If there is no symlink, try to create it manually in that folder by the following command:
-    -     $ ln -s ./Debug/TalsecRuntime.xcframework/ TalsecRuntime.xcframework
-
-Followingly:
-
-- `npx react-native run-ios` (debug) -> uses dev version of freeRASP
-- `npx react-native run-ios --configuration Release` (release) -> uses release version of freeRASP
-
-## Step 4: Import freeRASP into the app
+Create an object under `androidConfig` key with following entries:
 
-We provide a custom hook that handles all required logic as registration of freeRASP, mounting and unmounting of listeners for you. Import the hook into your app:
+- `packageName` _: string_ - package name of your app you chose when you created it
+- `certificateHashes` _: string[]_ - hash of the certificate of the key which was used to sign the application. **Hash which is passed here must be encoded in Base64 form.** If you are not sure how to get your certificate hash, you can check out the guide on our [Github wiki](https://github.com/talsec/Free-RASP-Community/wiki/Getting-your-signing-certificate-hash-of-app). Multiple hashes are supported, e.g. if you are using a different one for the Huawei App Gallery.
+- `supportedAlternativeStores` _: string[] | undefined_ - If you publish on the Google Play Store and/or Huawei AppGallery, you **don't have to assign anything** there as those are supported out of the box.
 
-```ts
-import { useFreeRasp } from 'freerasp-react-native';
-```
+#### iOS configuration
 
-## Step 5: Setup the configuration, callbacks and initialize freeRASP
+Create an object under `iosConfig` key with following entries:
 
-First, the configuration and callbacks will be explained. Then the **Initialization** chapter shows the implementation.
+- `appBundleId` _: string_ - Bundle ID of your app
+- `appTeamId` _: string_ - the Apple Team ID
 
-### Configuration
+#### Common configuration
 
-You need to provide configuration for freeRASP to work properly and initialize it. The freeRASP configuration contains configs for both Android and iOS. You must fill all the required values for the plugin to work.
+Lastly, set up common configuration for both iOS and Android:
 
-For Android:
+- `watcherMail` _: string_ - your mail address where you wish to receive reports. Mail has a strict form `[email protected]` which is passed as String.
+- `isProd` _: boolean | undefined_ - defaults to `true` when undefined. If you want to use the Dev version to disable checks described [in the chapter below](#dev-vs-release-version), set the parameter to `false`. Make sure that you have the Release version in the production (i.e. isProd set to true)!
 
-- `packageName` - package name of your app you chose when you created it
-- `certificateHashes` - hash of the certificate of the key which was used to sign the application. **Hash which is passed here must be encoded in Base64 form.** If you are not sure how to get your certificate hash, you can check out the guide on our [Github wiki](https://github.com/talsec/Free-RASP-Community/wiki/Getting-your-signing-certificate-hash-of-app). Multiple hashes are supported, e.g. if you are using a different one for the Huawei App Gallery.
-- `supportedAlternativeStores` _(optional)_ - If you publish on the Google Play Store and/or Huawei AppGallery, you **don't have to assign anything** there as those are supported out of the box.
+### Dev vs Release version
 
-For iOS similarly to Android, `appBundleId` and `appTeamId` are required.
+The Dev version is used to not complicate the development process of the application, e.g. if you would implement killing of the application on the debugger callback. It disables some checks which won't be triggered during the development process:
 
-Lastly, pass a mail address to `watcherMail` to be able to get reports. Mail has a strict form `[email protected]` which is passed as String.
+- Emulator-usage (simulator)
+- Debugging (debug)
+- Signing (appIntegrity)
+- Unofficial store (unofficialStore)
 
 ### Callbacks
 
-freeRASP executes periodical checks when the application is running. Handle the detected threats in the **listeners**. For example, you can log the event, show a window to the user or kill the application. Visit our [wiki](https://github.com/talsec/Free-RASP-Community/wiki/Threat-detection) to learn more details about the performed checks and their importance for app security.
+freeRASP executes periodical checks when the application is running. Handle the detected threats in the **listeners**. For example, you can log the event, show a window to the user or kill the application. [Visit our wiki](https://github.com/talsec/Free-RASP-Community/wiki/Threat-detection) to learn more details about the performed checks and their importance for app security.
 
 ### Initialization
 
@@ -249,9 +218,9 @@ useFreeRasp(config, actions);
 
 When freeRASP initializes correctly, you should see `freeRASP initialized` message in logs. Otherwise, you'll see warning with description of what went wrong.
 
-_You can override this default behavior by extending the `actions` object with `'started'` key (to change action after successful initialization), and `'initializationError'` key (to set up action after unsuccessful initialization)_
+_You can override this default behavior by extending the `actions` object with `started` key (to change action after successful initialization), and `initializationError` key (to set up action after unsuccessful initialization)_
 
-## Step 6: Additional note about obfuscation
+## Step 5: Additional note about obfuscation
 
 The freeRASP contains public API, so the integration process is as simple as possible. Unfortunately, this public API also creates opportunities for the attacker to use publicly available information to interrupt freeRASP operations or modify your custom reaction implementation in threat callbacks. In order for freeRASP to be as effective as possible, it is highly recommended to apply obfuscation to the final package/application, making the public API more difficult to find and also partially randomized for each application so it cannot be automatically abused by generic hooking scripts.
 
@@ -278,7 +247,7 @@ android {
 }
 ```
 
-## Step 7: User Data Policies
+## Step 6: User Data Policies
 
 Google Play [requires](https://support.google.com/googleplay/android-developer/answer/10787469?hl=en) all app publishers to declare how they collect and handle user data for the apps they publish on Google Play. They should inform users properly of the data collected by the apps and how the data is shared and processed. Therefore, Google will reject the apps which do not comply with the policy.
 

example/ios/FreeraspReactNativeExample.xcodeproj/project.pbxproj

@@ -14,7 +14,6 @@
 		13B07FC11A68108700A75B9A /* main.m in Sources */ = {isa = PBXBuildFile; fileRef = 13B07FB71A68108700A75B9A /* main.m */; };
 		7699B88040F8A987B510C191 /* libPods-FreeraspReactNativeExample-FreeraspReactNativeExampleTests.a in Frameworks */ = {isa = PBXBuildFile; fileRef = 19F6CBCC0A4E27FBF8BF4A61 /* libPods-FreeraspReactNativeExample-FreeraspReactNativeExampleTests.a */; };
 		81AB9BB82411601600AC10FF /* LaunchScreen.storyboard in Resources */ = {isa = PBXBuildFile; fileRef = 81AB9BB72411601600AC10FF /* LaunchScreen.storyboard */; };
-		A41E05192962BAB100B363A8 /* TalsecRuntime.xcframework in Frameworks */ = {isa = PBXBuildFile; fileRef = A44E6986295D7CAB000A719C /* TalsecRuntime.xcframework */; };
 /* End PBXBuildFile section */
 
 /* Begin PBXContainerItemProxy section */
@@ -44,6 +43,8 @@
 		5DCACB8F33CDC322A6C60F78 /* libPods-FreeraspReactNativeExample.a */ = {isa = PBXFileReference; explicitFileType = archive.ar; includeInIndex = 0; path = "libPods-FreeraspReactNativeExample.a"; sourceTree = BUILT_PRODUCTS_DIR; };
 		81AB9BB72411601600AC10FF /* LaunchScreen.storyboard */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = file.storyboard; name = LaunchScreen.storyboard; path = FreeraspReactNativeExample/LaunchScreen.storyboard; sourceTree = "<group>"; };
 		89C6BE57DB24E9ADA2F236DE /* Pods-FreeraspReactNativeExample-FreeraspReactNativeExampleTests.release.xcconfig */ = {isa = PBXFileReference; includeInIndex = 1; lastKnownFileType = text.xcconfig; name = "Pods-FreeraspReactNativeExample-FreeraspReactNativeExampleTests.release.xcconfig"; path = "Target Support Files/Pods-FreeraspReactNativeExample-FreeraspReactNativeExampleTests/Pods-FreeraspReactNativeExample-FreeraspReactNativeExampleTests.release.xcconfig"; sourceTree = "<group>"; };
+		8C2BD8B529DF06E4000304E9 /* Talsec */ = {isa = PBXFileReference; lastKnownFileType = folder; name = Talsec; path = ../../ios/Talsec; sourceTree = "<group>"; };
+		8C2BD8BB29DF0976000304E9 /* TalsecRuntime.xcframework */ = {isa = PBXFileReference; lastKnownFileType = wrapper.xcframework; name = TalsecRuntime.xcframework; path = ../../ios/Talsec/TalsecRuntime.xcframework; sourceTree = "<group>"; };
 		A41E05172962B9FD00B363A8 /* TalsecRuntime.xcframework */ = {isa = PBXFileReference; lastKnownFileType = wrapper.xcframework; name = TalsecRuntime.xcframework; path = "../../../../React/test2/someTestProject/node_modules/freerasp-react-native/ios/TalsecRuntime.xcframework"; sourceTree = "<group>"; };
 		A44E6986295D7CAB000A719C /* TalsecRuntime.xcframework */ = {isa = PBXFileReference; lastKnownFileType = wrapper.xcframework; name = TalsecRuntime.xcframework; path = ../../ios/TalsecRuntime.xcframework; sourceTree = "<group>"; };
 		A44E698B295D7E12000A719C /* TalsecRuntime.xcframework */ = {isa = PBXFileReference; lastKnownFileType = wrapper.xcframework; name = TalsecRuntime.xcframework; path = ../../ios/Debug/TalsecRuntime.xcframework; sourceTree = "<group>"; };
@@ -65,7 +66,6 @@
 			buildActionMask = 2147483647;
 			files = (
 				0C80B921A6F3F58F76C31292 /* libPods-FreeraspReactNativeExample.a in Frameworks */,
-				A41E05192962BAB100B363A8 /* TalsecRuntime.xcframework in Frameworks */,
 			);
 			runOnlyForDeploymentPostprocessing = 0;
 		};
@@ -105,6 +105,8 @@
 		2D16E6871FA4F8E400B85C8A /* Frameworks */ = {
 			isa = PBXGroup;
 			children = (
+				8C2BD8BB29DF0976000304E9 /* TalsecRuntime.xcframework */,
+				8C2BD8B529DF06E4000304E9 /* Talsec */,
 				A44E6986295D7CAB000A719C /* TalsecRuntime.xcframework */,
 				A44E698B295D7E12000A719C /* TalsecRuntime.xcframework */,
 				A44E69A2295DA98F000A719C /* TalsecRuntime.xcframework */,

example/ios/FreeraspReactNativeExample.xcodeproj/xcshareddata/xcschemes/FreeraspReactNativeExample.xcscheme

@@ -1,28 +1,10 @@
 <?xml version="1.0" encoding="UTF-8"?>
 <Scheme
    LastUpgradeVersion = "1210"
-   version = "1.7">
+   version = "1.3">
    <BuildAction
       parallelizeBuildables = "YES"
       buildImplicitDependencies = "YES">
-      <PreActions>
-         <ExecutionAction
-            ActionType = "Xcode.IDEStandardExecutionActionsCore.ExecutionActionType.ShellScriptAction">
-            <ActionContent
-               title = "Run Script"
-               scriptText = "cd &quot;${SRCROOT}/../../ios&quot;&#10;if [ &quot;${CONFIGURATION}&quot; = &quot;Release&quot; ]; then&#10;    rm -rf ./TalsecRuntime.xcframework&#10;    ln -s ./Release/TalsecRuntime.xcframework/ TalsecRuntime.xcframework&#10;else&#10;    rm -rf ./TalsecRuntime.xcframework&#10;    ln -s ./Debug/TalsecRuntime.xcframework/ TalsecRuntime.xcframework&#10;fi &#10;">
-               <EnvironmentBuildable>
-                  <BuildableReference
-                     BuildableIdentifier = "primary"
-                     BlueprintIdentifier = "13B07F861A680F5B00A75B9A"
-                     BuildableName = "FreeraspReactNativeExample.app"
-                     BlueprintName = "FreeraspReactNativeExample"
-                     ReferencedContainer = "container:FreeraspReactNativeExample.xcodeproj">
-                  </BuildableReference>
-               </EnvironmentBuildable>
-            </ActionContent>
-         </ExecutionAction>
-      </PreActions>
       <BuildActionEntries>
          <BuildActionEntry
             buildForTesting = "YES"

example/ios/Podfile.lock

@@ -548,7 +548,7 @@ SPEC CHECKSUMS:
   Flipper-RSocket: d9d9ade67cbecf6ac10730304bf5607266dd2541
   FlipperKit: cbdee19bdd4e7f05472a66ce290f1b729ba3cb86
   fmt: ff9d55029c625d3757ed641535fd4a75fedc7ce9
-  freerasp-react-native: 402dcc7a34804b8ae4805f18c79666e606d24b1e
+  freerasp-react-native: 68f18a583428d1bbb484228abdb3b9cd258795b4
   glog: 04b94705f318337d7ead9e6d17c019bd9b1f6b1b
   hermes-engine: 2af7b7a59128f250adfd86f15aa1d5a2ecd39995
   libevent: 4049cae6c81cdb3654a443be001fb9bdceff7913

example/src/App.tsx

@@ -22,6 +22,7 @@ const App = () => {
       appTeamId: 'your_team_ID',
     },
     watcherMail: '[email protected]',
+    isProd: true,
   };
 
   const actions = {

freerasp-react-native.podspec

@@ -15,7 +15,7 @@ Pod::Spec.new do |s|
   s.source       = { :git => "https://github.com/talsec/freerasp-react-native.git", :tag => "#{s.version}" }
 
   s.source_files = "ios/**/*.{h,m,mm,swift}"
-  s.ios.vendored_frameworks = "ios/Debug/TalsecRuntime.xcframework"
+  s.ios.vendored_frameworks = "ios/TalsecRuntime.xcframework"
 
   s.dependency "React-Core"