[Aerogear-users] iOS OAuth2 redirect URIs

classic Classic list List threaded Threaded
3 messages Options
Reply | Threaded
Open this post in threaded view
|

[Aerogear-users] iOS OAuth2 redirect URIs

Michael Doo
Hello,

I've managed to integrate the Aerogear iOS OAuth2 library pretty well into my app for Google accounts. However, for Outlook, their OAuth2 API only allow two redirect URIs: urn:ietf:wg:oauth:2.0:oob and HTTPS schemes, e.g., https://login.live.com/oauth20_desktop.srf, to which the authorization code will be attached. The important bit here is that they do not allow customization of the redirect URI to be something like '\(bundleString)://oauth2Callback' or 'fb\(clientId)://authorize/', which the OAuth2 library seems to need.

The documentation doesn't seem to clearly state how this should or could be addressed. Since not every OAuth2 provider has allowed iOS bundle names as valid redirect URIs, it seems to me there should be a way to handle this.

Best,
Michael Doo

_______________________________________________
Aerogear-users mailing list
[hidden email]
https://lists.jboss.org/mailman/listinfo/aerogear-users
Reply | Threaded
Open this post in threaded view
|

Re: [Aerogear-users] iOS OAuth2 redirect URIs

Matthias Wessendorf
Hi,

mind filing a JIRA ticket, if there is a bit of missing functionality for a more generic usage.

I think we should not end up adding an Outlook speciifc class, but I agree that it might be handy to have a bit of more flexibility here

On Fri, Dec 4, 2015 at 11:18 PM, Michael Doo <[hidden email]> wrote:
Hello,

I've managed to integrate the Aerogear iOS OAuth2 library pretty well into my app for Google accounts. However, for Outlook, their OAuth2 API only allow two redirect URIs: urn:ietf:wg:oauth:2.0:oob and HTTPS schemes, e.g., https://login.live.com/oauth20_desktop.srf, to which the authorization code will be attached. The important bit here is that they do not allow customization of the redirect URI to be something like '\(bundleString)://oauth2Callback' or 'fb\(clientId)://authorize/', which the OAuth2 library seems to need.

The documentation doesn't seem to clearly state how this should or could be addressed. Since not every OAuth2 provider has allowed iOS bundle names as valid redirect URIs, it seems to me there should be a way to handle this.

Best,
Michael Doo

_______________________________________________
Aerogear-users mailing list
[hidden email]
https://lists.jboss.org/mailman/listinfo/aerogear-users




--

_______________________________________________
Aerogear-users mailing list
[hidden email]
https://lists.jboss.org/mailman/listinfo/aerogear-users
Reply | Threaded
Open this post in threaded view
|

Re: [Aerogear-users] iOS OAuth2 redirect URIs

Matthias Wessendorf
for got the JIRA link: http://jira.jboss.org/browse/AGIOS  

On Mon, Dec 7, 2015 at 4:32 PM, Matthias Wessendorf <[hidden email]> wrote:
Hi,

mind filing a JIRA ticket, if there is a bit of missing functionality for a more generic usage.

I think we should not end up adding an Outlook speciifc class, but I agree that it might be handy to have a bit of more flexibility here

On Fri, Dec 4, 2015 at 11:18 PM, Michael Doo <[hidden email]> wrote:
Hello,

I've managed to integrate the Aerogear iOS OAuth2 library pretty well into my app for Google accounts. However, for Outlook, their OAuth2 API only allow two redirect URIs: urn:ietf:wg:oauth:2.0:oob and HTTPS schemes, e.g., https://login.live.com/oauth20_desktop.srf, to which the authorization code will be attached. The important bit here is that they do not allow customization of the redirect URI to be something like '\(bundleString)://oauth2Callback' or 'fb\(clientId)://authorize/', which the OAuth2 library seems to need.

The documentation doesn't seem to clearly state how this should or could be addressed. Since not every OAuth2 provider has allowed iOS bundle names as valid redirect URIs, it seems to me there should be a way to handle this.

Best,
Michael Doo

_______________________________________________
Aerogear-users mailing list
[hidden email]
https://lists.jboss.org/mailman/listinfo/aerogear-users




--



--

_______________________________________________
Aerogear-users mailing list
[hidden email]
https://lists.jboss.org/mailman/listinfo/aerogear-users