That's the point of proving a cordova plugin to store those tokens in natives secured
storage.
Doing a cordova plugin with implicit grant miss the point.
Sent from my iPhone
On 11 nov. 2014, at 13:39, Erik Jan de Wit <edewit(a)redhat.com>
wrote:
I thought, correct me if I’m wrong, that mobile and javascript apps cannot use anything
other then implicit grant. As the whole switching to the browser can be intercepted and
therefore mobile client cannot be trusted to keep the secret.
> On 11 Nov,2014, at 13:20 , Corinne <corinnekrych(a)gmail.com> wrote:
>
> But with implicit grant you won't get refresh tokens.
> So you dont offer the same fluid features like the natives experience...
>
> ++
> Corinne
>
> Sent from my iPhone
>
>> On 11 nov. 2014, at 13:12, Erik Jan de Wit <edewit(a)redhat.com> wrote:
>>
>>
>>> On 11 Nov,2014, at 13:10 , Bruno Oliveira <bruno(a)abstractj.org> wrote:
>>>
>>> Gotcha, so the idea is to make use of the same approach from ag-js?
>>
>> Right, but then use InAppBrowser so that you can use it more easily on cordova
>> _______________________________________________
>> aerogear-dev mailing list
>> aerogear-dev(a)lists.jboss.org
>>
https://lists.jboss.org/mailman/listinfo/aerogear-dev
>
> _______________________________________________
> aerogear-dev mailing list
> aerogear-dev(a)lists.jboss.org
>
https://lists.jboss.org/mailman/listinfo/aerogear-dev
_______________________________________________
aerogear-dev mailing list
aerogear-dev(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/aerogear-dev