Grnbeagle
Reputation: 1761
iOS 11 AppAuth handling redirect URI that redirects
When using AppAuth (v 0.90.0) for Google OAuth authentication on my iOS app, specifically for iOS 11, the following happens:
- Start Google authentication on the iOS client with a redirect URI
http://myproduct.com/oauth-redirect. Because the client ID is that of a web application, I'm not able to specify a custom URL. - AppAuth starts a SFAuthenticationSession on the client, I'm prompted to allow sign-in. Select Continue. (https://github.com/openid/AppAuth-iOS/blob/0.90.0/Source/iOS/OIDAuthorizationUICoordinatorIOS.m#L91-L95)
http://myproduct.com/oauth-redirectredirects to a custom URLmyproduct://auth, and SFAuthenticationSession completion block runs with a callback URL ofmyproduct://auth.- When AppAuth resumes the auth flow, it checks whether the original URL is the same as the callback URL from the previous step: https://github.com/openid/AppAuth-iOS/blob/0.90.0/Source/OIDAuthorizationService.m#L108-L110
- Because
http://myproduct.com/oauth-redirectandmyproduct://authare different, the flow stops.
Note that I'm using a web app clientID so that I can perform token exchange on the server side.
In the previous AppAuth version, this was possible because I was able to call resumeAuthorizationFlowWithURL directly with the updated URL.
Is there a way to support this use case without having to update AppAuth?
Upvotes: 4
Views: 1460
Answers (0)
Related Questions
- iOS - AppAuth without redirection
- Allowed OAuth 2.0 Redirect URIs for Native App
- Swift OAuth2.0 with redirectURI
- SFAuthenticationViewController issue with Google on iOS 11
- Google Oauth redirect to ios custom url
- iOS 12 - AppAuth redirect URL not trigger AppDelegate
- What's a redirect URI? how does it apply to iOS app for OAuth2.0?
- redirect uri causing issues when navigating to an oauth url
- Can Google Oauth redirect_uri be configured with pattern?
- OAuth redirect_uri server side