h6. What
It would be flexible if the user could specify their own [auth config|https://github.com/openid/AppAuth-Android#advanced-configuration]. The user may want to perform browser whitelisting/blacklisting and other actions like providing custom scopes etc to be able to use refresh tokens .
h6. Why
To allow a user to freely configure the extra functionality in AppAuth such as whitelisting or blacklisting browsers that a user can login through. It can also be used to allow connections to non-SSL endpoints on the OpenID Connect server, which is useful for running a local development cluster or in a test environment.
h6. How
Allow a user to specify their own appauth auth config which can be be consumed by AppAuth under the hood . This should have some defaults like the following [code example|https://github.com/feedhenry/mobile-security-android-template/blob/c7e6646e5bbcfb8206822b0148eb1ab6d047f5cb/app/src/main/java/com/feedhenry/securenativeandroidtemplate/features/authentication/providers/KeycloakAuthenticateProviderImpl.java#L92-L96] if no options are specified. |
|
