iOS developer friends: what is a good resource that explains the requirements for doing secure OAuth2 in an iOS app?
3
1
3
Replying to @beaugunderson
Your best best is to not use the client secret, and redirect to the app's registered protocol handler. Or dynamically…

Jun 21, 2016 · 7:09 PM UTC

1
...generate a client secret when the app first launches (unique to each app). Sounds like this would be a good blog post.
1