Comments (6)
hi Nate @nbarbettini. We have the requirement to do native (non-browser) sign-in flow for our newly build app. Stakeholder want a seamless experience on launch of the app, it would help us greatly.
- Is this a PKCE flow?
- Does it support SSO with an webapplication?
Can we perhaps:
- help on developing this in IOS.
- share a Beta version on this?
from okta-oidc-ios.
Is this feature still being implemented or taken off the roadmap after this?
Remove Resource Owner Password flow support #84
We are building an App that currently uses 1.0.1 release that has singin with username and password but refresh token feature is not working on that release putting us in tight spot.
Should we wait for this feature to be implemented or go with browser based authentication with popup?
from okta-oidc-ios.
@codal-ashahu This feature replaces #84. We weren't able to replace the Resource Owner Password flow immediately in 2.0 since we had to build a supporting library. The 2.1.0 release will include this new functionality to do native (non-browser) sign-in but without the security risk of the Resource Owner Password flow.
I'm not sure why refreshing a token isn't working for you - that should work even in 1.0.1. Sorry about that! Have you opened an issue for it?
from okta-oidc-ios.
@IldarAbdullin-okta @olexiylebedyev-okta Did we end up deciding to model this native sign-in method like the Android one? i.e. as authenticate(sessionToken)
? I seem to remember that, but it's buried in PRs 😉 I think my description in this issue is not accurate anymore, just wanted to confirm.
from okta-oidc-ios.
this is a possible linked issue #140
from okta-oidc-ios.
@chielos24 Yes, we built this functionality so it's possible to create a seamless (native) sign-in experience without leaving the app.
-
Is this a PKCE flow? Under the hood, yes. It uses the OpenID Connect authorization code flow just like the browser sign-in flow.
-
Does it support SSO with an webapplication? No. There is a tradeoff here: signing in with a browser makes the web session available for SSO in the browser, while signing in with custom native UI does not. If you need SSO in the browser, you'll need to stick with browser sign-in.
Building it requires this library and the okta-auth-swift library. Please see our custom sign-in UI sample for a working demo.
from okta-oidc-ios.
Related Issues (20)
- App is logged out after period of inactivity / overnight on iOS 15 HOT 14
- UIAlertController Sign-out messaging says Sign-In HOT 4
- Keychain is cleared on upgrade from 3.8.0 to 3.10.8 / 3.11.0 HOT 6
- 400 bad request. invalid_token. HOT 2
- Browser-based sign in HOT 1
- Modify readFromSecureStorage() and writeToSecureStorage() calls to throw errors HOT 2
- "Cookies are required" displayed after enabling cookies in safari settings. HOT 4
- iOS OKTA browser-sign-in login page is not getting localised. HOT 2
- Unable to see Okta Login screen after Error "access_denied: User is not assigned to the client application." HOT 2
- Unable to login HOT 2
- Sign out should clear session cookies HOT 6
- OktaOidcKeychain.clearAll() clears entire keychain instead of just okta related keys HOT 3
- KeyChain App Group Not Supported HOT 2
- @available not allowed for stored properties in Xcode 14 HOT 4
- Sign In With Apple causes App Store Review Rejection HOT 4
- user interaction when refresh token expired HOT 1
- build error with SDK 16.1
- OktaOidc alongside GoogleSSO library HOT 2
- Support for DPoP
- Support for Vision OS
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from okta-oidc-ios.