So I might be to paranoid, but with security there is no such thing as being to paranoid. So if a javascript based Cordova plugin with InAppBrowser makes no sense then I suggest postponing the OAuth2 plugin until swift is supported by Cordova.