App-to-web single sign-on
App to Web Single Sign On allows you to take a session from your mobile application and extend it to a browser on the same device. This is useful for giving a seamless experience to your users when they transition from the mobile application to the website where more functionality likely exists. This functionality can only be used when using the OneWelcome CIM identity provider as it is a unique feature of the OneWelcome Consumer Identity Manager. This can be configured in the OneWelcome Token Server Admin.
The SDK allow you to specify a target URL where authentication is required. This URL must be configured in the Action Token configuration of the OneWelcome Consumer Identity Manager. It will then verify that your mobile application's session is valid and establish a session with the Identity provider before redirecting the user to the target URL with them automatically logged in.
To use the functionality, call the appToWebSingleSignOn:withTargetUrl:completion:
method on UserClient
with target URL as a parameter and completion block.
In case of success, a URL will be returned which need to be opened in a web browser. The SDK will also provide a token param as a convenience. In case of failure an error will be returned. The returned errors will be within the
ONGGenericErrorDomain or ONGAppToWebSingleSignOnErrorDomain.
Example code: