Comments (9)
OauthSwift 1.3.0 was released today. :)
from capacitor-oauth2.
Note that OAuthSwift added support for PKCE OAuthSwift/OAuthSwift#501 (comment)
from capacitor-oauth2.
For code
response type PKCE will be enabled by default because it's the most common use case for code
.
A additional option will allow disabling this default behaviour.
For this task the challenge itself and the method is set by the plugin, depending on the platform the method is plain (web) or S256 (Android, iOS).
In any case the challenge and the method along is return in the response parameters so users can store it as it suites them.
from capacitor-oauth2.
https://developer.okta.com/authentication-guide/implementing-authentication/auth-code-pkce
https://developer.okta.com/authentication-guide/auth-overview/#authorization-code-with-pkce-flow
from capacitor-oauth2.
This does not include having to use the app secret, which will not be supported because of security reasons.
from capacitor-oauth2.
While looking deeply into Facebook's SDK I think as soon as PKCE is supported also FB might be supported out of the box
from capacitor-oauth2.
iOS: OAuthSwift with PKCE is not released yet!
Android: appAuth supports PKCE
Web: own impl will support it as well ;)
from capacitor-oauth2.
Althougth it might be easier for me as plugin developer to leave everything to the user but as a user I don't want to do PKCE myself. So I most probably introduce 1-2 dependencies to the web part and let the plugin handle everything.
from capacitor-oauth2.
As mentioned above PKCE is enabled by default if code flow is used.
To disable PKCE set the new option pkceDisabled
to true
.
Note: I tested PKCE only with Google OAuth provider, which does not require the usage of PKCE and works with and without it.
@mraible Could you please test this with your provider (okta) and give me a feedback. Do you need #18 as well to make it work? If not I would release the pkce feature right away ;)
from capacitor-oauth2.
Related Issues (20)
- Feat: Integration with trapeze to improve configuration
- Auth0 HOT 1
- Bug: Intent filter not working for redirection after login HOT 2
- Feat: Support Android 13 HOT 2
- Support for Capacitor 5 HOT 10
- Is there a way to get a login prompt? HOT 1
- Azure B2C ui_locales is directly supported via the auth request builder exception HOT 2
- I am not able to hide URL bar HOT 2
- accessTokenEndpoint quirk with django backend HOT 1
- Google with android says "Custom scheme URIs are not allowed for 'WEB' client type" HOT 3
- App Store Connect Issue
- Hide navigation bar and footer on iOS HOT 5
- Evidence of the use of safari
- Question: What kind of browser is used for login? HOT 1
- Feat: support universal links on iOS HOT 3
- Azure SSO; Response comes from azure, but does not come to authenticate
- capacitor-oauth2 - Azure SSO is not working in android and ios.Bug:
- Feat: Electron
- IOS 17 keyclock login not working
- Bug: Jest not working when using the plugin
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from capacitor-oauth2.