Hi there,
i want to develop an App and i want to implement a login to access the App. I need to know if i can use a simple token field instead of username/password fileds to access the App. I didn't found any info in the guidelines about this. Can anyone help me ?
thanks,
Alessandro
Unless you can explain why login is required, an app must perform some useful function before requiring login. An app can enable additional functionality after login. There is no restriction on how a user logs in.
>I didn't found any info in the guidelines about this
Are you sure? There are two parts to your proposal: ✖ "login to access the App" and ✖✖ use of OAuth2/restful (web session/simplified) token v. sign in/pwd.
See the ASRG's section 5.1.1:
(v) Account Sign-In: ✖ If your app doesn’t include significant account-based features, let people use it without a log-in. Apps may not require users to enter personal information to function, except when directly relevant to the core functionality of the app or required by law. If your core app functionality is not related to a specific social network (e.g. Facebook, WeChat, Weibo, Twitter, etc.), you must provide access without a login or via another mechanism. Pulling basic profile information, sharing to the social network, or inviting friends to use the app are not considered core app functionality. The app must also include a mechanism to revoke social network credentials and disable data access between the app and social network from within the app. ✖✖ An app may not store credentials or tokens to social networks off of the device and may only use such credentials or tokens to directly connect to the social network from the app itself while the app is in use.
