The Google Identity team just open sourced some Open ID Connect libraries that use In-app tabs on Android and SFSafariViewController on iOS for secure, streamlined web workflows in-app. https://openid.github.io/AppAuth-Android https://openid.github.io/AppAuth-iOS -Jason From: <keycloak-user-bounces@lists.jboss.org<mailto:keycloak-user-bounces@lists.jboss.org>> on behalf of Stian Thorgersen <sthorger@redhat.com<mailto:sthorger@redhat.com>> Reply-To: "stian@redhat.com<mailto:stian@redhat.com>" <stian@redhat.com<mailto:stian@redhat.com>> Date: Monday, March 7, 2016 at 12:11 AM To: keycloak-dev <keycloak-dev@lists.jboss.org<mailto:keycloak-dev@lists.jboss.org>>, "keycloak-user@lists.jboss.org<mailto:keycloak-user@lists.jboss.org>" <keycloak-user@lists.jboss.org<mailto:keycloak-user@lists.jboss.org>> Subject: [keycloak-user] Best practices for securing sign-in on mobile Our Cordova apapter uses a webview (via cordova-plugin-inappbrowser) to open the login page. This results in no SSO between applications and it also has some security implications. A better approach is to use in app browser tabs when supported or fallback to the system browser. See https://www.youtube.com/watch?v=ppeU8yeI_ks for more details.