App Store Rejection: 'TLS error' in IPv6-only environments

If your App Store submission is rejected with a 'TLS error' when tested in an IPv6-only environment, often citing a lack of AAAA records, it typically indicates application-level issues rather than a Supabase configuration problem.

Why does this happen?#

Supabase projects are designed for compatibility with IPv6-only NAT64/DNS64 environments through automatic IPv4-to-IPv6 translation. This means explicit AAAA records are not required for your *.supabase.co domain. The 'TLS error' usually points to how the application handles networking requests, which can interfere with this automatic translation.

How to resolve this issue#

• Ensure you're using hostnames, not IP addresses - Use project-ref.supabase.co everywhere in your code. See Supporting IPv6 DNS64/NAT64 Networks
• Use high-level networking APIs like URLSession that handle IPv6 automatically. See URLSession Documentation
• Review your App Transport Security settings. See Preventing Insecure Network Connections
• Test your app in an IPv6-only environment using Apple's Network Link Conditioner. See Testing for IPv6 DNS64/NAT64 Compatibility