SSO for an IOS XMPP Application

macbery · December 8, 2017, 8:32am

We have following requirement: We already have a web app using SAML, now we are going to implement Okta login in IOS mobile application. I got the following link from your web site "https://developer.okta.com/use_cases/mobile/okta_mobile_connect " In that its mentioned like.

To work with Okta Mobile Connect, your mobile app needs to meet the criteria below:

It must support SAML authentication via an embedded web view that allows any URL to be called from inside the embedded web view.
It must have a URI scheme registered for the app that only returns the app to foreground when called.

I got a link which mentioned like # WebViews are bad — Use AppAuth for Mobile Single Sign-On.
(https://www.gluu.org/blog/webviews-are-bad-use-appauth/).

Ques. As you mentioned in (1), using embedded web view makes any security issue ?

tom · December 11, 2017, 4:56pm

Is this a native mobile application you are building for your okta organization?

You could use appauth strategy for this, but it will require that you support OIDC instead of SAML:

kenlijoe · December 19, 2017, 9:44am

thanks tom for this information.

macbery · January 25, 2018, 11:29am

Thanks Tom. Sorry for the late reply.

Its a native mobile application. We have only SAML support.
Can we use embedded view for SAML in native IOS apps? Do you have any suggestion on this?