Presentation is loading. Please wait.

Presentation is loading. Please wait.

IOS SDK v1.0 with NAM 4.2.

Published byAsher Welch Modified over 5 years ago

Similar presentations

Presentation on theme: "IOS SDK v1.0 with NAM 4.2."— Presentation transcript:

1 iOS SDK v1.0 with NAM 4.2

2 iOS SDK OAuth2 library in Objective-C
Simple APIs with drop-in solution (no source code needed to be included in developer project) For the first release (iOS 8+) it does basic OAuth2 flow Achieve 1-prompt SSO to OAuth resources Tested OAuth Authorization Code flow TestApp to test SDK Going forward (iOS 9+) can potentially perform 0-prompt native-app sso

3 User Consent

4 iOS SDK SDK available as iOS Framework to be dropped in Xcode project - Add NMAAuthLib.framework file in appropriate build Target to the Embedded Binaries section Two separate deliverables, one for simulator & other for the device Implements the [native application profile] of OAuth spec All comms HTTPS Handles Multiple Accounts Special Redirect URI for Embedded browser urn:ietf:wg:oauth:2.0:oob Sensitive data such as Access, Refresh Tokens are securely stored in device Keychain

5

6 OAuth Configuration OAuth scopes can be configured in NAM Oauth settings -> Resource Servers -> scopes Sample OAuth application configuration shown below

7 Using NMAAuthLib Configure your Client - NMAAuthLibManager Singleton [[NMAAuthLibManager sharedInstance] authorizationURL:[NSURL authz URL..."] tokenURL:[NSURL token URL..."] redirectURL:[NSURL redirect URL..."] Requesting Access - Embedded Browser - Provide Authorization URL Handler [[NMAAuthLibManager sharedInstance] withPreparedAuthorizationURLHandler:^(NSURL *preparedURL){ // Open a web view or similar }]; - Load request in WebView [_webView loadRequest:[NSURLRequest requestWithURL:preparedURL]]; - In webViewDidFinishLoad delegate method parse the callback URL One of the possible places server can send the Authorization Code is Page Title [NMAAuthLibManager handleRedirectURL:] - On Success After successful authentication, a new NMAAuthAccount is created and stored in device keychain and your app will receive `NMAAuthAccountManagerAccountsDidChangeNotification’ notification - On Failure If Authentication failed, `NMAAuthAccountManagerDidFailToRequestAccessNotification` notification containing an `NSError` will be sent.

8 Using NMAAuthLib Getting Accounts - List of all account or specific account can be queried by [[NMAAuthLibManager sharedInstance] Invoking a Protected Resource Request There are a couple of ways to invoke a request. The preferred way is to pre- authorize the request. This will pre-emptively refresh token if the access token has expired (within 60 secs) [theRequest authorizeRequestWithError:&error]; Note: This is a synchronous call and is made on the calling method thread. User Data - Each NMAAuthAccount has a property ‘userData’ which can be used to store account user information Removing Accounts - [[NMAAuthLibManager sharedInstance] removeAccount:account];

9 (Q)?A:#

Download ppt "IOS SDK v1.0 with NAM 4.2."

Similar presentations

AAI for Apps Using AAI with your Smartphone Daniel Latzer Zürich, April 2013

AAI for Apps Using AAI with your Smartphone Daniel Latzer Zürich, April 2013
Authentication Simon Cross Partner Engineer facebook.com/sicross An Overview.

Authentication Simon Cross Partner Engineer facebook.com/sicross An Overview.
FI-WARE Testbed Access Control temporary solution.

FI-WARE Testbed Access Control temporary solution.
1Proprietary and Confidential AirVantage API – Getting started David SCIAMMA – June 13th 2014.

1Proprietary and Confidential AirVantage API – Getting started David SCIAMMA – June 13th 2014.
Smartphone Apps Development Team Weiqing Li Lijun Zhu Man Li.

Smartphone Apps Development Team Weiqing Li Lijun Zhu Man Li.
The Alfresco API Steven Glover Gethin James Peter Monks.

The Alfresco API Steven Glover Gethin James Peter Monks.
FIspace Security Components FIspace Security Components NetFutures 2015 FIspace project Javier Romero Negrín Javier Hitado Simarro ATOS Serdar Arslan KoçSistem.

FIspace Security Components FIspace Security Components NetFutures 2015 FIspace project Javier Romero Negrín Javier Hitado Simarro ATOS Serdar Arslan KoçSistem.
Introducing Windows Server 2012 R2 Work Folders:

Introducing Windows Server 2012 R2 Work Folders:
Hannes Tschofenig (IETF#79, SAAG, Beijing). Acknowledgements I would like to thank to Pasi Eronen. I am re- using some of his slides in this presentation.

Hannes Tschofenig (IETF#79, SAAG, Beijing). Acknowledgements I would like to thank to Pasi Eronen. I am re- using some of his slides in this presentation.
Security and Digital Recording System Students: Gadi Marcu, Tomer Alon Number:D1123 Supervisor: Erez Zilber Semester:Spring 2004 Mid Semester Presentation.

Security and Digital Recording System Students: Gadi Marcu, Tomer Alon Number:D1123 Supervisor: Erez Zilber Semester:Spring 2004 Mid Semester Presentation.
Microsoft ASP.NET Security Venkat Chilakala Support Professional Microsoft Corporation.

Microsoft ASP.NET Security Venkat Chilakala Support Professional Microsoft Corporation.
Multiple Tiers in Action

Multiple Tiers in Action
Proxy Cache Leonid Romanovsky Olga Fomenko Winter 2003 Instructor: Konstantin Sinyuk.

Proxy Cache Leonid Romanovsky Olga Fomenko Winter 2003 Instructor: Konstantin Sinyuk.
Team Members Jason Bender Derek Crane Cliff Crane Renan Pereira Isidro Arribas.

Team Members Jason Bender Derek Crane Cliff Crane Renan Pereira Isidro Arribas.
Clients using wide variety of devices/languages/platforms Server applications using wide variety of platforms/languages Browser Native app Server.

Clients using wide variety of devices/languages/platforms Server applications using wide variety of platforms/languages Browser Native app Server.
Esri UC2013. Technical Workshop. Technical Workshop 2013 Esri International User Conference July 8–12, 2013 | San Diego, California Building Secure Applications.

Esri UC2013. Technical Workshop. Technical Workshop 2013 Esri International User Conference July 8–12, 2013 | San Diego, California Building Secure Applications.
User signs in to WindowsUser is signed in to your app 12.

User signs in to WindowsUser is signed in to your app 12.
Fraser Technical Solutions, LLC

Fraser Technical Solutions, LLC
Christopher M. Pascucci Basic Structural Concepts of.NET Browser – Server Interaction.

Christopher M. Pascucci Basic Structural Concepts of.NET Browser – Server Interaction.
UNIT-V The MVC architecture and Struts Framework.

UNIT-V The MVC architecture and Struts Framework.

Similar presentations

Ads by Google