beau · Jun 21, 2016 · 5:31 PM UTC

beau @beaugunderson

21 Jun 2016

iOS developer friends: what is a good resource that explains the requirements for doing secure OAuth2 in an iOS app?

Aaron Parecki · Jun 21, 2016 · 7:09 PM UTC

Aaron Parecki @aaronpk

21 Jun 2016

Your best best is to not use the client secret, and redirect to the app's registered protocol handler. Or dynamically…

Aaron Parecki · Jun 21, 2016 · 7:10 PM UTC

Aaron Parecki · Jun 21, 2016 · 7:10 PM UTC

Aaron Parecki @aaronpk

21 Jun 2016

...generate a client secret when the app first launches (unique to each app). Sounds like this would be a good blog post.

Jun 21, 2016 · 7:10 PM UTC