-
Notifications
You must be signed in to change notification settings - Fork 348
GettingStarted
Xamarin.Auth is a cross platform library that helps developers authenticate users via OAuth protocol (OAuth1 and OAuth2).
- nuget version 1.4.0.0
supporting:
- embedded browsers (Android WebView and iOS UIWebView) NOTE: this support will be prohibited by some OAuth providers DEFAULT 2017-03
- native UI (Android Custom Tabs and iOS Safari View Controller) must be explicitly setup in Authenticator constructor!
Let's authenticate a user to access Facebook:
using Xamarin.Auth;
// ...
var auth = new OAuth2Authenticator
(
clientId: "App ID from https://developers.facebook.com/apps",
scope: "",
authorizeUrl: new Uri ("https://m.facebook.com/dialog/oauth/"),
redirectUrl: new Uri ("http://www.facebook.com/connect/login_success.html"),
// switch for new Native UI API
// true = Android Custom Tabs and/or iOS Safari View Controller
// false = embedded browsers used (Android WebView, iOS UIWebView)
// default = false (not using NEW native UI)
isUsingNativeUI: use_native_ui
);Facebook uses OAuth 2.0 authentication, so we create an OAuth2Authenticator.
Authenticators are responsible for managing the user interface and communicating with
authentication services.
Authenticators take a variety of parameters; in this case, the application's ID, its authorization scope, and Facebook's various service locations are required.
To capture events and information in the OAuth flow simply subscribe to Authenticator events (add event handlers):
Xamarin.Android
auth.Completed += (sender, eventArgs) =>
{
// UI presented, so it's up to us to dimiss it on Android
// dismiss Activity with WebView or CustomTabs
this.Finish();
if (eventArgs.IsAuthenticated)
{
// Use eventArgs.Account to do wonderful things
} else
{
// The user cancelled
}
};Xamarin.iOS
auth.Completed += (sender, eventArgs) =>
{
// UI presented, so it's up to us to dimiss it on iOS
// dismiss ViewController with UIWebView or SFSafariViewController
this.DismissViewController (true, null);
if (eventArgs.IsAuthenticated)
{
// Use eventArgs.Account to do wonderful things
} else
{
// The user cancelled
}
};While authenticators manage their own UI, it's up to you to initially present the authenticator's UI on the screen. This lets you control how the authentication UI is displayed–modally, in navigation controllers, in popovers, etc.
Before we present the UI, we need to start listening to the Completed event which fires
when the user successfully authenticates or cancels. You can find out if the authentication
succeeded by testing the IsAuthenticated property of eventArgs:
All the information gathered from a successful authentication is available in
eventArgs.Account.
Now we're ready to present the login UI
The GetUI method used to return ("old" - embedded browser API)
-
UINavigationControllerson iOS, and -
Intentson Android.
for new API (both embedded browsers and Native UI Support) user will need to cast object to appropriate type:
- Android
- embedded browser WebView - cast to
Intent - native UI - cast to CustomTabsIntent.Builder and call Build() to et Intent
- embedded browser WebView - cast to
- iOS
- embedded browser UIWebView - cast to
UIViewController - native UI - cast to
SFSafariViewController
- embedded browser UIWebView - cast to
On Android, user would write the following code to present the UI.
instead of
StartActivity (auth.GetUI (this));use
StartActivity ((Intent)auth.GetUI (this));and for Native UI (Custom Tabs):
StartActivity (((CustomTabsIntent.Builder)auth.GetUI).Build() (this));On iOS, user would present UI in following way (with differences fromold API)
Instead:
PresentViewController (auth.GetUI (this));for old API just cast object obtanied by GetUI() to UIViewController:
PresentViewController ((UIViewController)auth.GetUI (this));and for new API cast it to SFSafariViewController:
PresentViewController ((SFSafariViewController)auth.GetUI (), true, null);Since Facebook is an OAuth2 service, we'll make requests with OAuth2Request providing
the account we retrieved from the Completed event. Assuming we're authenticated, we'll
grab the user's info to demonstrate:
var request = new OAuth2Request
(
"GET",
new Uri ("https://graph.facebook.com/me"),
null,
eventArgs.Account
);
request.GetResponseAsync().ContinueWith
(
t =>
{
if (t.IsFaulted)
Console.WriteLine ("Error: " + t.Exception.InnerException.Message);
else
{
string json = t.Result.GetResponseText();
Console.WriteLine (json);
}
}
);Xamarin.Auth securely stores Account objects so that you don't always have to reauthenticate
the user. The AccountStore class is responsible for storing Account information, backed by
the
Keychain
on iOS and a KeyStore on
Android:
// On iOS:
AccountStore.Create ().Save (eventArgs.Account, "Facebook");
// On Android:
AccountStore.Create (this).Save (eventArgs.Account, "Facebook");Saved Accounts are uniquely identified using a key composed of the account's
Username property and a "Service ID". The "Service ID" is any string that is
used when fetching accounts from the store.
If an Account was previously saved, calling Save again will overwrite it.
This is convenient for services that expire the credentials stored in the account
object.
You can fetch all Account objects stored for a given service:
// On iOS:
IEnumerable<Account> accounts = AccountStore.Create ().FindAccountsForService ("Facebook");
// On Android:
IEnumerable<Account> accounts = AccountStore.Create (this).FindAccountsForService ("Facebook");It's that easy.
Xamarin.Auth includes OAuth 1.0 and OAuth 2.0 authenticators, providing support for thousands
of popular services. For services that use traditional username/password authentication, you
can roll your own authenticator by deriving from FormAuthenticator.
If you want to authenticate against an ostensibly unsupported service, fear not – Xamarin.Auth is extensible! It's very easy to create your own authenticators – just derive from any of the existing authenticators and start overriding methods.