enadun
Reputation: 3307
Is Facebook official SDK's are supporting or inbuilt with the Proof Key for Code Exchange (PKCE)?
In our app, we log in using the official Facebook SKDs for Android and iOS. However, we received a report that a third-party malicious app could hijack our 0Auth Access token for our Android app. As a solution, we're considering using the PKCE method, and we can see that the Facebook API already supports that.
So, we want to know whether the official Facebook SDKs also support that or if they are already built with that functionality. If not, will we have to have our own login flow to use PKCE?
Upvotes: 0
Views: 21
Answers (0)
Related Questions
- Design for Facebook authentication in an iOS app that also accesses a secured web service
- Where does the redirect url fit in "Login with facebook" button for ios and android sdk's?
- How to fix Facebook error "Platform Policy 8.2" in app with expo
- Displaying a fan page in a UIWebView with an authenticated user session using Facebook's access token
- For a hybrid SSO scenario using the Facebook iOS SDK, what's the best way generating a password/key for our own custom user records?