1。创建证书之类的。与创建开发者证书相同。但是创建appid的时候记得勾选消息推送的选项。
2。将声称的证书导出为后缀名.p12的文件。
3。将证书(后缀名为.cer)和后缀名为.p12的文件声称.pem文件
具体声称指令(在相同的目录下)
openssl x509 -in aps_development.cer -inform DER -out PushChatCert.pem -outform PEM (将.cer文件声称.pem)
openssl pkcs12 -nocerts -out PushChatKey.pem -in Push.p12(将.p12文件声称.pem,这个会用到导出密码和设置新密码)
然后将两个.pem文件合并为一个
cat PushChatCert.pem PushChatKey.pem > ck.pem
检验是否有效
telnet gateway.sandbox.push.apple.com 2195
Trying 17.172.232.18...
Connected to gateway.sandbox.push-apple.com.akadns.net.
Escape character is '^]'.
openssl s_client -connect gateway.sandbox.push.apple.com:2195 -cert PushChatCert.pem -key PushChatKey.pem
New, TLSv1/SSLv3, Cipher is AES256-SHA
Server public key is 2048 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
SSL-Session:
Protocol : TLSv1
Cipher : AES256-SHA
Session-ID:
Session-ID-ctx:
Master-Key: D5055C696BA18157C18923621181471AC2A002F4A12A575B12D367B99C72130DD0143EAE456ACE7B2B3EE566BA772C1E
Key-Arg : None
Start Time: 1435901789
Timeout : 300 (sec)
Verify return code: 0 (ok)