[keycloak-user] Mobile SSO - web brower+ native iOS
Bruno Oliveira
bruno at abstractj.org
Thu Nov 26 06:26:02 EST 2015
Months ago we had such requirement for FeedHenry. The fact, is that SAML
2.0 is not mobile friendly, due to the multiple redirects between SP, IdP
and the Web Browser.
The best you can do, like already mentioned by Stian is to make use of
OpenID or make use of Webviews. But with Webviews, you have to deal with
the annoying login prompt every time.
If you are interested about the work on it, take a look at:
https://github.com/feedhenry-templates?utf8=%E2%9C%93&query=saml
I hope it helps.
On Thu, Nov 26, 2015 at 3:48 AM <Joseph.George at finantix.com> wrote:
> Dear All
>
> we have a situation where users have applications both html5 based web and
> also native iOS apps accessing from iPads
>
> The requirement is that users access the web based application within a
> iPad, which will be redirected to Keyclock IDP server for login.
> Once user logins, next time, if the same user just tap on the native app
> within the same device, it should not again prompt for userid/password,
> rather SSO takes care of it
>
> We need to design so that users can toggle back and forth among mobile
> browser apps and mobile apps.
> This is ideal for agents, sales reps, who to need to switch quickly among
> programs while on the go.,
>
> Would like to know - is this something KeyCloak with SAML 2.0 supports out
> of the box please?
>
> Thanks and Regards
> Joseph
>
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20151126/45c60453/attachment.html
More information about the keycloak-user
mailing list