Patrick Schaller · May 4, 2017 · 5:11 PM UTC

Patrick Schaller

Patrick Schaller @Rogue__Leader

4 May 2017

@aaronpk I was just reading your article goo.gl/IF9r2O which was helpful. Is using SafariViewController the only safe auth on iOS?

Aaron Parecki · May 4, 2017 · 5:13 PM UTC

Aaron Parecki @aaronpk

4 May 2017

Thanks! That, or launching Safari or the service's native application. SafariViewController will provide the best UX.

Patrick Schaller · May 4, 2017 · 5:15 PM UTC

Patrick Schaller @Rogue__Leader

4 May 2017

Awesome! I'm getting a lot of push back on the visible URL. I'm wondering how/why so many mobile apps don't show it. Thoughts?

Aaron Parecki · May 4, 2017 · 5:17 PM UTC

Aaron Parecki @aaronpk

4 May 2017

Prior to SafariViewController, devs weren't willing to bounce ppl out of the app, the only other way to have a visible URL

Patrick Schaller · May 4, 2017 · 5:19 PM UTC

Patrick Schaller @Rogue__Leader

4 May 2017

Sorry, I meant I'm being told the URL can't be visible and they are holding up other mobile apps login as examples that do not show it.

Aaron Parecki · May 4, 2017 · 5:47 PM UTC

Aaron Parecki · May 4, 2017 · 5:47 PM UTC

Aaron Parecki @aaronpk

4 May 2017

Replying to @Rogue__Leader

Yeah sorry, 140 chars isn't enough 😭 Before SFSafariView, the only way to securely do OAuth was to launch the native…

May 4, 2017 · 5:47 PM UTC

Aaron Parecki · May 4, 2017 · 5:48 PM UTC

Aaron Parecki @aaronpk

4 May 2017

Replying to @aaronpk @Rogue__Leader

more here: aaronparecki.com/2017/05/04/…

@rogue__leader Yeah sorry, 140 chars isn't enough 😭 ...

@rogue__leader Yeah sorry, 140 chars isn't enough 😭 Before SFSafariView, the only way to securely do OAuth was to launch the native Safari browser. This meant you'd get bounced out of the app, which...

aaronparecki.com

Patrick Schaller · May 4, 2017 · 6:12 PM UTC

Patrick Schaller @Rogue__Leader

4 May 2017

WOW, thank you so much! Do you know, offhand, of any mobile apps doing Auth this way?

more replies