<div dir="ltr"><br><div class="gmail_extra"><div class="gmail_quote">On Tue, Jan 13, 2015 at 6:20 PM, Bill Burke <span dir="ltr"><<a href="mailto:bburke@redhat.com" target="_blank">bburke@redhat.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><span class=""><br>
<br>
On 1/13/2015 11:19 AM, Summers Pittman wrote:<br>
> On 01/13/2015 11:11 AM, Bill Burke wrote:<br>
>> Why does a user have to enter in the OTP generated by their mobile<br>
>> device? Wouldn't it be cooler if the steps were:<br>
>><br>
>> 1. Enter in username password in the browser<br>
>> 2. Browser blocks and wait for...<br>
>> 3. Press a button on your OTP iphone app<br>
>> 4. iphone app sends an HTTP message to Keycloak with username and<br>
>> generated OTP (in background)<br>
>> 5. Keycloak sees if a browser app is waiting for OTP verification, then<br>
>> verifies OTP if so.<br>
>> 6. Browser unblocks and lets user in.<br>
>><br>
>> Now, the user doesn't ever have to enter the OTP (and mess it up like I<br>
>> do all the time). They just need their mobile device.<br>
>><br>
>><br>
>><br>
> Even better, in Android this can be done from an interactive<br>
> notification. You won't even need to open the app.<br>
><br>
<br>
</span>Probably the same in iOS, no?<br></blockquote><div><br></div><div>the same 'interactive notification' concept exist in iOS too, that is without launching the app in the foreground, instead allowing the user to click 'Accept/Send OTP" in the notification directly and let the system call your app in the 'background' to process the request.</div><div><br></div><div>-</div><div>Christos</div><div><br></div><div><br></div><div> </div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<span class="im HOEnZb"><br>
--<br>
Bill Burke<br>
JBoss, a division of Red Hat<br>
<a href="http://bill.burkecentral.com" target="_blank">http://bill.burkecentral.com</a><br>
</span><div class="HOEnZb"><div class="h5">_______________________________________________<br>
keycloak-dev mailing list<br>
<a href="mailto:keycloak-dev@lists.jboss.org">keycloak-dev@lists.jboss.org</a><br>
<a href="https://lists.jboss.org/mailman/listinfo/keycloak-dev" target="_blank">https://lists.jboss.org/mailman/listinfo/keycloak-dev</a><br>
</div></div></blockquote></div><br></div></div>