I have written a CTK plugin for iOS and Safari can now authenticate with web sites that require client authentication (certificaterequest/certificateverity). However, a WKWebView in my own app never accesses my CTK plugin for authentication. I need WKWebView TLS to be able to use my CTK just like Safari does. Is there a solution for this?

Is there a profile or some way to turn on CryptoTokenKit logging? There are directions for MacOS but not for iOS.

Will it be possible for a CryptoTokenKit extension to open an external accessory on iPhone/iPad (eg: smart card reader)? If so, do I configure the accessory information in the extension bundle or the main app bundle?

Xcode 12 doesn't have a template for adding a CryptoTokenKit extension. When I work around this and add my own based off of MacOS I can get my project to build but when I try to run the app on iOS 14, Xcode says Unable to install "xxx" The console log for iOS says this (may not be related): trustd[158]/1#8 LF=0 copyparentcertificates Error Domain=NSOSStatusErrorDomain Code=-34018 "Client has neither application-identifier nor keychain-access-groups entitlements" UserInfo={NSDescription=Client has neither application-identifier nor keychain-access-groups entitlements} I have Xcode signing my extension and adding as Embed without signing under Frameworks...

I can test with some difficulty using sandbox test accounts, but I want to be absolutely sure that a real purchase works before putting my app in the App Store.Has anyone done this?