Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/curityio/openid-client-android-appauth

An OpenID Connect Android demo app using AppAuth libraries
https://github.com/curityio/openid-client-android-appauth

android appauth code-example mobile oauth2 openid-connect

Last synced: about 2 months ago
JSON representation

An OpenID Connect Android demo app using AppAuth libraries

Host: GitHub
URL: https://github.com/curityio/openid-client-android-appauth
Owner: curityio
License: apache-2.0
Created: 2020-03-20T14:38:09.000Z (almost 5 years ago)
Default Branch: master
Last Pushed: 2023-03-10T10:02:55.000Z (almost 2 years ago)
Last Synced: 2024-05-03T11:03:51.656Z (9 months ago)
Topics: android, appauth, code-example, mobile, oauth2, openid-connect
Language: Kotlin
Homepage: https://curity.io/resources/learn/kotlin-android-appauth/
Size: 621 KB
Stars: 8
Watchers: 4
Forks: 4
Open Issues: 3
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

# Curity Android AppAuth Code Example

[![Quality](https://img.shields.io/badge/quality-demo-red)](https://curity.io/resources/code-examples/status/)
[![Availability](https://img.shields.io/badge/availability-source-blue)](https://curity.io/resources/code-examples/status/)

Demonstrates how to implement an OpenID Connect mobile client using AppAuth libraries.

## Tutorial Documentation

The [Tutorial Walkthrough](https://curity.io/resources/learn/kotlin-android-appauth) explains the complete configuration and behavior.

## Quick Start

The easiest way to run the code example is via an automated script as explained in the [Mobile Setup Article](https://curity.io/resources/learn/mobile-setup-ngrok):

- Copy a license.json file into the code example root folder
- Edit the `./start-idsvr.sh` script to use either a local Docker URL on an ngrok internet URL
- Run the script to deploy a preconfigured Curity Identity Server via Docker
- Build and run the mobile app from Android Studio
- Sign in with the preconfigured user account `demouser / Password1`
- Run `./stop-idsvr.sh` when you want to free Docker resources

## User Experience

The example mobile app demonstrates OAuth lifecycle events, starting with an `Unauthenticated View`:

![Unauthenticated View](images/android-unauthenticated-view.png)

Once authenticated the `Authenticated View` show how to work with tokens and sign out:

![Authenticated View](images/android-authenticated-view.png)

The example app also demonstrates reliable handling of AppAuth errors.

## Security

AppAuth classes are used to perform the following security related operations accordng to [RFC8252](https://datatracker.ietf.org/doc/html/rfc8252):

* Logins and Logouts via a secure ASWebAuthenticationSession window
* Use of Authorization Code Flow (PKCE)

![Secure Window](images/secure-login-window.png)

## More Information

Please visit [https://curity.io](https://curity.io) for more information about the Curity Identity Server.