Hello, I'm implementing ASWebAuthenticationSession to make a sign in. ASWebAuthenticationSession it uses SFSafariViewController to display the sign in URL, but after make the sign in, there is no prompt to ask to the user to store their credentials. Using directly SFSafariViewController this prompt appears. Even the suggestion to change the password to one stronger. Is this issue happening to someone else? Thank you very much
Search results for
ASWebAuthenticationSession cookie
1,295 results found
Selecting any option will automatically load the page
Post
Replies
Boosts
Views
Activity
You should use ASWebAuthenticationSession for this. That error about : and / is to catch a common misunderstanding about schemes: the scheme part of a URL does not include the trailing ://. For example, let's say was we had myscheme://success?authToken=abc. The scheme of the URL would by myscheme, which is the value that you would pass to ASWebAuthenticationSession. You can see this yourself if you ran something like this in a playground: let url = URL(string: myscheme://success?authToken=abc)! print(url.scheme!)
Topic:
App & System Services
SubTopic:
Core OS
Tags:
Hi, Does anyone knows, if I can redirect a user to the broswer, to open authentication pages (ike Google, Facebook or other agents) instead of use the SDK and in-app browsers (like WKWebView/SFSafari)? I need to open a URL provided by backend services, but in ASWebAuthenticationSession I cant use the callbackScheme in the URL, it doesn't allow / and : symbols to close the moda. So, if I can, will my app be accepted by apple to publish on App Store? Or if I can't, how should I fix that problem? Thank you for your help.
Hi, I want use ASWebAuthenticationSession to autofill login/password on a website. I tried some code but it doesn't work it always prompt me for password. First I goto webSITE from button click action and then get the permissions prompt;https://pasteboard.co/IvzRXGZ.pngThen, after clicking continue button, the website prompts me for password;https://pasteboard.co/IvzSJjs.pngI fill in my username and password.Now, next time I go to page it SHOULD autofill with the login and password I entered. Its asking for login and password instead!Here is code excerpt;#import ViewController.h #import <AuthenticationServices/AuthenticationServices.h> @interface ViewController () @property (strong) ASWebAuthenticationSession *session; @end @implementation ViewController @synthesize session; - (void)viewDidLoad { [super viewDidLoad]; } - (IBAction)loginBtnClicked:(id)sender { NSURL *destinationUrl = [NSURL URLWithString:@https://site.name.edu]; NSString *callbackUrlScheme = @https://site.name.edu/Pages
Matt, In an ASWebAuthenticationSession, using the default browser, we do not get the prompt to save/store passwords in keychain. Ironically, we DO get the autofill from keychain on subsequent visits IF we have the password stored from a regualr web session in Safari. What are we missing in terms of Saving credentials via the prompt in an ASWebAuthenticationSession?
Topic:
App & System Services
SubTopic:
Core OS
Tags:
Passkeys and security keys are supported in WKWebView, if the RPID is for an Associated Domain using the webcredentials association. In this case that means only Google-owned apps will be able to authenticate to a Google URL. If you need a web view to authenticate to a domain you don't own, you should use ASWebAuthenticationSession.
Topic:
Safari & Web
SubTopic:
General
Tags:
Can we disable ITP for Safari web extension pages (including the new tab page)? Extension pages are trusted views as the user has installed the extension and granted permissions. ITP adding storage and cookie isolation here affects functionality for any embedded frames in extension pages. StorageAccess API i also not useful here since the GUID of the parent extension page will change every time the browser launches, nullifying the granted access.
We're using ASWebAuthenticationSession to kickstart the auth flow in our Mac app. Most of the time when we start the auth session, Chrome is launched and authentication flow proceeds as expected (because Chrome is the default browser). On the same machine with same configuration, some times Safari is launched. What might be wrong ?
Hi, Facing the same here. It is a big problem for any applications with SSO relying on cookies. Did you find a solution? document.cookie still returns old deleted cookies leading to many unexpected behavior. Chrome and firefox works perfectly fine. Thank you
Topic:
Safari & Web
SubTopic:
General
Tags:
I am facing exactly the same issue. document.cookie does not contain the same as what is displayed in the Storage > Cookies tab. The deleted cookie from application A a.mydomain.com (set on parent domain: mydomain.com) on logout is not visible from the panel of the application B tab. This is the expected behavior. But the cookie is still in document.cookie in application B leading to many side effects, even after refreshing the page. It is like as if document.cookie is not refreshed properly. On the opposite, chrome and firefox are working as expected. Did you find a solution? I guess this is a major bug on safari.
Topic:
Safari & Web
SubTopic:
General
Tags:
Hi! I'm facing the following issue in different versions of Safari: When removing cookies via PHP on log out of an application I can see that the Safari Developer Tools > Storage > Cookies (of the website) removes the cookies from the list. So my user cookie is no longer there as expected, all good. However, if I run document.cookie on the console or document.cookie.includes('user') I can see the cookie listed there. I would expect the document.cookie to be updated with the Storage tab as it happens on the other browsers. Does anyone know why is this happening? Is there anything special that must be done for Safari to remove the cookie from there? This behaviour is consistent in versions v14, v15 and v16 of Safari. Thank you for your time. Regards, Borja.
I'm also getting this on Firefox and Chrome, but unsurprising it works fine on Safari... Just Apple doing Apple things. But anyways, go into your browsers Inspector, click on storage, and delete all cookies associated with https://developer.apple.com/ That worked for me.
Topic:
Developer Tools & Services
SubTopic:
Xcode
Tags:
PWA Freezing after OpenID authorizes user [iOS Safari Standalone] I have built a simple PWA for our security staff that allows employees to click links and view content about our company's policies on various matters. The app uses Microsoft's OWIN middleware library to authorize our employees' access into the app via their enterprise Microsoft login creds. When a user clicks the 'Employee Sign in' prompt on our login page, they are redirected to Microsoft's domain to complete the sign-in process. Once sign in is complete, they are redirected back to our app's home page. The Problem The problem appears only to arise when iOS users (v13) pin the app to their homescreen and then launch the app in standalone mode, and only after the user has completely terminated the app and then returned. We've tested the app on Chrome, Safari (non-standalone mode), Firefox, and the issue does not present in those browswers. The app functions seamlessly up until the point that the user has completed their Microsoft signin and be
Topic:
App & System Services
SubTopic:
Core OS
Tags:
iOS
Safari
Safari Developer Tools
Authentication Services
How can you able to hide ASWebAuthenticationSession's web browser from UI?
Topic:
App & System Services
SubTopic:
Core OS
Tags:
The ASAuthorization family of APIs is for signing in to services that you own. They work by releasing user credentials or other authentication information directly to your app, so they shouldn't be used for credentials that aren't yours. Signing in to other services, such as google.com, generally uses something like an OAuth flow. ASWebAuthenticationSession is an API from AuthenticationServices that makes doing OAuth really easy.
Topic:
App & System Services
SubTopic:
Core OS
Tags: