I am working with a customer that has started to look at an unusual solution for Oauth. They have a mobile application that they want to authenticate using Oauth.
To do this they are setting up a webpage as Oauth SP doing all the communication with the IPD.
The Mobile app starts the webpage in a embedded browser, webview etc. Once the webpage get the token, it puts it in as a URL parameter. The mobile app intecepts this and gets the token.
This sound very strange to me but I know Oauth to bad to see the actual problem. Any ideas?
Aucun commentaire:
Enregistrer un commentaire