时间戳

首页 > 解决方案 > 使用自定义选项卡在 Android 应用程序中进行 SSO Web 登录

android - 使用自定义选项卡在 Android 应用程序中进行 SSO Web 登录

问题描述

我正在尝试使用 customtabs 从网页获取登录令牌。

据我了解,每次在自定义选项卡上打开链接时都会启动意图,然后我可以设置一个意图过滤器,以便在需要时返回我的应用程序。

应用程序在自定义选项卡中启动登录页面用户输入他的登录名/mdp 页面重定向到 https://myapp.companyname.fr/redirect?token=qzdioqzj,qzi,dqzid 应用程序应该重新启动

我在我的活动中设置了 chrometabs:

public class AuthenticationActivity extends BasicActivity {

    private AuthenticationVm authenticationVm;
    private ActivityAuthenticationBinding binding;

    private CustomTabsServiceConnection mConnection;
    private CustomTabsClient mClient;

    private String authToken ;


    @Override
    protected void onCreate(Bundle savedInstanceState) {
        App.setAfterAuthentication(false);
        super.onCreate(savedInstanceState);
        binding = DataBindingUtil.setContentView(this, R.layout.activity_authentication);
        this.setFinishOnTouchOutside(false);
        authenticationVm = new AuthenticationVm(this);
        binding.setVm(authenticationVm);

        if (null != getUriContainedInIntend()) {
            this.authToken = getTokenFromIntent();
        } else {
            launchCustomTabs();

            mConnection = new CustomTabsServiceConnection() {
                @Override
                public void onCustomTabsServiceConnected(ComponentName componentName, CustomTabsClient customTabsClient) {
                    mClient = customTabsClient;
                }

                @Override
                public void onServiceDisconnected(ComponentName componentName) {
                    mClient = null;
                }
            };
            // force to use chrome
            String packageName = "com.android.chrome";
            CustomTabsClient.bindCustomTabsService(this, packageName, mConnection);

        }
    }

    public void launchCustomTabs() {
        String urlToInterrogate = getString(R.string.sso_api_base_url) +
                getString(R.string.sso_api_authorize_endpoint);
        String rerirectUri = getString(R.string.sso_redirect_uri_scheme)
                + "://"
                + getString(R.string.sso_redirect_uri_host)
                + getString(R.string.sso_redirect_uri_path);

        StringBuilder url = new StringBuilder(urlToInterrogate);
        url.append("?client_id=");
        url.append(getString(R.string.sso_api_client_id));
        url.append("&response_type=code");
        url.append("&redirect_uri=");
        url.append(rerirectUri);

        CustomTabsIntent.Builder mBuilder = new CustomTabsIntent.Builder();
        CustomTabsIntent customTabsIntent = mBuilder.build();
        customTabsIntent.intent.setFlags(Intent.FLAG_ACTIVITY_NO_HISTORY);
        customTabsIntent.intent.addFlags(Intent.FLAG_ACTIVITY_CLEAR_TOP);
        customTabsIntent.launchUrl(this, Uri.parse(url.toString()));
    }

    private Uri getUriContainedInIntend() {
        return getIntent().getData();
    }

    /**
     * Methode interceptant l'intent pour en extraire le token
     * @return token String
     */
    private String getTokenFromIntent() {
        Uri data = getUriContainedInIntend();
        String uri = data.toString();
        return uri.substring( uri.indexOf("#access_token=") + "#access_token=".length(), uri.indexOf("&expires_in="));
    }


    /**
     * Récupère la propriété binding.
     *
     * @return la valeur de binding
     */
    public ActivityAuthenticationBinding getBinding() {
        return binding;
    }
}

在清单中我添加了这个来捕捉意图:

    <activity android:name=".ui.AuthenticationActivity"
        android:screenOrientation="sensorLandscape"
        android:launchMode="singleTop"
        android:noHistory="true"
        android:theme="@style/NoTitleDialog">
        <!-- to catch the sso return -->
        <intent-filter>
            <action android:name="android.intent.action.VIEW" />
            <category android:name="android.intent.category.DEFAULT" />
            <category android:name="android.intent.category.BROWSABLE" />
            <data
                android:host="@string/sso_redirect_uri_host"
                android:path="@string/sso_redirect_uri_path"
                android:scheme="@string/sso_redirect_uri_scheme" />
        </intent-filter>
    </activity>

在strings.xml中我有:

<!-- SSO -->
<string name="sso_redirect_uri_scheme" translatable="false">https</string>
<string name="sso_redirect_uri_host" translatable="false">myapp.companyname.fr</string>
<string name="sso_redirect_uri_path" translatable="false">/redirect</string>
<string name="sso_api_base_url" translatable="false">https://gw.okm.test.com</string>
<string name="sso_api_authorize_endpoint" translatable="false">/v1/oauth2/authorize</string>
<string name="sso_api_token_endpoint" translatable="false">/v1/oauth2/token</string>
<string name="sso_api_client_id" translatable="false">qzd16q5d156qd1qzd1qz61zq5615d1q6d1z</string>
<string name="sso_api_client_secret" translatable="false">qzd1q6d1q56d1q6d1q1qz6d1zd65qz1dz51</string>

但是,在登录后,用户确实被重定向到:https ://myapp.companyname.fr/redirect?token=qz561dqz56d1qz5dqzd 但是该活动没有捕捉到任何意图。

我做错什么了吗?

标签: androidsingle-sign-ondeep-linkingchrome-custom-tabs

解决方案

尝试使用自定义架构而不是 https。

例子:

<string name="sso_redirect_uri_scheme" translatable="false">myschema</string>

然后,确保您的 Web 应用程序重定向到 myschema://myapp.companyname.fr/redirect?token=qzdioqzj,qzi,dqzid

推荐阅读