IETF Logo Mail Archive

Re: [OAUTH-WG] popular apps that use appauth?

David Waite <david@alkaline-solutions.com> Sun, 24 February 2019 09:29 UTC

Return-Path: <david@alkaline-solutions.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0F665130E5D for <oauth@ietfa.amsl.com>; Sun, 24 Feb 2019 01:29:32 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, MIME_QP_LONG_LINE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2Z5emWow6Ycl for <oauth@ietfa.amsl.com>; Sun, 24 Feb 2019 01:29:30 -0800 (PST)
Received: from alkaline-solutions.com (lithium5.alkaline-solutions.com [173.255.196.46]) by ietfa.amsl.com (Postfix) with ESMTP id 537F7130DE7 for <oauth@ietf.org>; Sun, 24 Feb 2019 01:29:30 -0800 (PST)
Received: from [IPv6:2601:282:202:b210:2954:5396:35ff:c9a2] (unknown [IPv6:2601:282:202:b210:2954:5396:35ff:c9a2]) by alkaline-solutions.com (Postfix) with ESMTPSA id CFDAD315EC; Sun, 24 Feb 2019 09:29:28 +0000 (UTC)
Content-Type: multipart/alternative; boundary="Apple-Mail-DDA71A89-6564-4C89-9A1C-3868F3A7DAF6"
Mime-Version: 1.0 (1.0)
From: David Waite <david@alkaline-solutions.com>
X-Mailer: iPad Mail (16C50)
In-Reply-To: <CAO7Ng+v7vCy_cnm00YryN11P5JZngm5R51pBJ5+rQYBF43yz1A@mail.gmail.com>
Date: Sun, 24 Feb 2019 02:29:27 -0700
Cc: Brock Allen <brockallen@gmail.com>, oauth@ietf.org
Content-Transfer-Encoding: 7bit
Message-Id: <9E5DF94F-0B6D-4F9E-922C-654A73DC40B4@alkaline-solutions.com>
References: <67bf27b0-e7d6-4710-ba6e-f46809d60d77@getmailbird.com> <CAO7Ng+v7vCy_cnm00YryN11P5JZngm5R51pBJ5+rQYBF43yz1A@mail.gmail.com>
To: Dominick Baier <dbaier@leastprivilege.com>
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/Mqr6rBQs_t933Onivsr0KNF3hsw>
Subject: Re: [OAUTH-WG] popular apps that use appauth?
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 24 Feb 2019 09:29:32 -0000

Offhand, Google Apps on iOS. Also the Facebook SDK uses a similar pattern. 

I believe third party apps which use Google for SSO are mandated to use it as well. Slack and Pokémon Go, for examples. 

A few apps will also use it or a similar pattern (for SAML) once they have determined it is an enterprise account. Some businesses are pushing hard for the others to change - a lot of EMM solutions and other authentication methods (like mutual TLS) don’t work properly with embedded browser views. 

-DW

> On Feb 24, 2019, at 1:26 AM, Dominick Baier <dbaier@leastprivilege.com> wrote:
> 
> The Uber app uses it for their OAuth flow to PayPal e.g.
> 
> ———
> Dominick
> 
>> On 23. February 2019 at 18:05:33, Brock Allen (brockallen@gmail.com) wrote:
>> 
>> I often have push back from customers (mainly the marketing department/UX folks) when suggesting AppAuth for native/mobile apps (IOW RFC8252). They ask for examples of any other popular or well known apps that follow this practice. Does anyone on this list have examples?
>> 
>> TIA
>> 
>> -Brock
>> 
>> _______________________________________________ 
>> OAuth mailing list 
>> OAuth@ietf.org 
>> https://www.ietf.org/mailman/listinfo/oauth
> _______________________________________________
> OAuth mailing list
> OAuth@ietf.org
> https://www.ietf.org/mailman/listinfo/oauth

v2.23.0 | Report a Bug | By Email