iPhone Authentication methods alternate to SFSafar...

whartrat · ‎11-01-2018

The documentation states that you can only use the SFSafariViewController, but Apple's latest secure method for doing this operation is using ASWebAuthenticationSession.

Can developers now use this? Currently my code requires this instead of the SFSafariView.

Gordon-C · ‎11-13-2018

Hi @whartrat,

We state in the documentation, "For security consideration, the OAuth 2.0 authorization page must be presented in a dedicated browser view. Fitbit users can only confirm they are authenticating with the genuine Fitbit.com site if they have the tools provided by the browser, such as the URL bar and Transport Layer Security (TLS) certificate information."

Our requirement is the user must see the URL they are logging into. By using ASWebAuthenticationSession, is this possible? I haven't found any documentation specifically stating so. If you have any documentation on this, I'd love to see it.

Gordon

Gordon Crenshaw
Senior Technical Solutions Consultant
Fitbit Partner Engineering & Web API Support | Google

Join us on the Community Forums!

Community Guidelines

Learn the Basics

Join the Community!

Not finding your answer on the Community Forums?

Go to the Help Site

Contact Support

iPhone Authentication methods alternate to SFSafariViewController

whartrat

Gordon-C