[keycloak-dev] Best practices for securing sign-in on mobile
Stian Thorgersen
sthorger at redhat.com
Mon Mar 7 03:11:25 EST 2016
Our Cordova apapter uses a webview (via cordova-plugin-inappbrowser) to
open the login page. This results in no SSO between applications and it
also has some security implications. A better approach is to use in app
browser tabs when supported or fallback to the system browser.
See https://www.youtube.com/watch?v=ppeU8yeI_ks for more details.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-dev/attachments/20160307/0cbcdf89/attachment.html
More information about the keycloak-dev
mailing list