How to Create a Seamless Mobile SSO (Single Sign-On) Experience in iOS

On an iPhone, when we log in to an app, we click a login button, and a website pops up to verify our credentials. Once verified, the website then redirects back to the app, and you are logged in. This familiar Single Sign-On (SSO) pattern is frequently referred to as the redirect flow for authentication. The use of a web browser for auth in this example is considered a “Best Current Practice” for security and usability reasons.

This is a companion discussion topic for the original entry at

Seems like nobody believes in WebAuthn

We believe in WebAuthn, it is just that it can not solve the Single Sign-On problem :slight_smile: