Reputation: 719
Can you use openID as a single sign-on for an iphone app?
I'm looking to implement Single Sign On for a native iOS app whereby logging in with this single sign on gives the mobile device authenticated access to our private service in a fashion that is somewhat similar to oauth.
The marketing text on openid.net suggests that "OpenID is a safe, faster, and easier way to log in to web sites.". Emphasis on web sites.
So the question is: Is it reasonable to implement openID on a native mobile app, or is openID only for web sites.
I've been scouring the web and I'm not finding a way to fit openID in as my login option.
Upvotes: 11
Views: 7207
Answers (4)
Reputation: 197
The accepted answer diminish the OpenID protocol. OpenID is a federated authentication protocol aiming simple SSO experience, its a web based protocol but it can be implemented if you design an authentication broker.
APPs share nothing, apps should never access anything but identity token and access token (if allow). here is a link to get you starter in the right path to build seems-less SSO in the mobile between apps regardless the app isolation level. https://www.pingidentity.com/developer/en/resources/napps-native-app-sso.html
Libraries: https://github.com/openid/AppAuth-iOS
https://github.com/openid/AppAuth-Android
Upvotes: 0
Reputation: 2429
The best way to do this seems to be to use a UIWebView and render a log in page from your site in it. Once the user logs in, they'll be redirected back to your site and have an auth cookie, which you can extract, store, and send on subsequent HTTP requests to the server.
See this, which has a sample code link at the bottom.
Upvotes: 4
Reputation: 7193
Derek Knight claims to have been experimenting with iOS and OpenID using the Janrain Engage iOS SDK. Although the github link he references no longer exists and he doesnt provide a complete and verified solution, he does offer an idea for how it might work.
OpenID and iOS development - gordonknight.co.uk
Janrain Engage for your iPad Apps
Upvotes: 0
Reputation: 11
OpenID sends its messages as a series of HTTP requests and responses. Your app and the openid provider must communicate to each other via HTTP post, and you will need to redirect the user to corresponding URLs, and have a URL for the user to be redirected back to. As such, you will probably find it difficult to integrate with your app.
Upvotes: 1
Related Questions
- Apple ID through OAuth?
- AppAuth/OpenID-Connect: Login with username and password possible?
- iphone: single sign on implementation
- If I my app uses Open ID Connect does it also have to support OAuth?
- Can i achieve single sign on with openid
- Salesforce OAUTH implementation
- Can we implement a openID options in a Native iPhone App?
- Is it possible to use iCloud to register or sign on users into an app?
- OpenID for android apps that require SignIn
- single sign on using facebook for iPhone application