Is it possible to revoke access if the configuration profile leaks?

[phi161]

I understand that it's possible to have certificates expire on a certain date, but would it be possible to somehow revoke access immediately? Or will this always require a new app build (replacing the binary's certificate)?

(also thanks for the great blog post and this tool, it's been very helpful!)

[Sherlouk]

Sorry @phi161, it turns out I was not subscribed to this repo and so missed your issue.

It is not currently possible to revoke a profile beyond the expiration date. You can regenerate the profile and certificate pair, but as you said this would require an app release and still leaves the previous versions "vulnerable".

Of course within the scope of your own project, you may be able to implement your own solution though - for example a remote configuration file which lists which profiles are valid (allowing you to remotely revoke them).