Mobile Authentication for iOS Applications - Stormpath 101

MobileAuthenticationforiOSApplications

Welcome!

• Agenda• Stormpath 101 (5 mins)

• Get Started with iOS (25 mins)

• Q&A (30 mins)

• Kaitlyn BarnardMarketing

• Edward JiangiOS Developer Evangelist

Speed to Market & Cost Reduction

• Complete Identity solution out-of-the-box

• Security best practices and updates by default

• Clean & elegant API/SDKs

• Little to code, no maintenance

Stormpath User Management

UserData

UserWorkflows Google ID

YourApplicationsApplication SDK

Application SDK

IDIntegrations

Facebook

ActiveDirectory

Let’stalkaboutAuthentication

AuthenticationProving You Are Who You Say You Are

CommonMethodsofAuthentication

Basic Authentication

GET /resource HTTP/1.1

Authorization: Basic 3CjvTdI30yoMS1xr3byzuz

3CjvTdI30yoMS1xr3byzuz =

Base64(“username:password”)

Session Authentication

Username Password SessionID

edjiang TxGA2UwvQ9qFTyzK 4zyCMdpxbtPXWgC8

demouser 5uGGNsn253UZRpbU kRqVCcqmwgEhkaH9

Server-Based Authentication

• Easy to use and implement

• Auth details are sent on every request

• Auth details do not expire

• Hard to scale, as verifying a request needs access to

central database

OAuth 2TokenAuthentication

OAuth 2 Token Authentication

POST /oauth/token HTTP/1.1Content-Type: application/x-www-form-urlencoded

grant_type=password&username=username&password=password

{"access_token": “eyJqdGkiOiI2UUxkc0xKeFlIZnU4M2…”,"refresh_token": “eyJqdGkiOiI2UUxkc0h6c2RoTXZWRV…”,"token_type": "Bearer","expires_in": 3600

OAuth 2 Token Authentication

GET /me HTTP/1.1

Authorization: Bearer eyJqdGkiOiI2UUxkc0xKeI…

"email": "edward@stormpath.com",

"givenName": "Edward",

"surname": "Jiang",

"fullName": "Edward Jiang”,

What is this token?eyJqdGkiOiI2UUxkc0xKeFa…

HeadereyJhbGciOiJIUzI1NiIsInR5cCI6IkpXV

{"typ": "JWT","alg": "HS256"

It’s a JSON Web Token!

BodyeyJpc3MiOiJodHRwczovL2V4YW1wbGUuY29tIiwic3ViIjoidXNlcm5hbWUiLCJuYmYiOjE0NjIzMDcyNTgsImV4cCI6MTQ2MjMxMDg1OCwiaWF0IjoxNDYyMzA3MjU4fQ.

SignatureXcRsBv9qQUgmZwXmEyb1sa1M2GvIepy5rDKR5WmEpn0

HS256(header + “.” + body, signingKey)

{"iss":

"https://example.com","sub": "username","nbf": 1462307258,"exp": 1462310858,"iat": 1462307258

Token Authentication

• More Secure

o Auth details are sent on every request, BUT!

o Auth token expires

• Easy to scale, as servers can verify a token with the signing

• Extensible

o Scale across multiple backend services

o Can embed information in the JSON

LET’S LOOK AT SOME CODE!

iOS Resources

• Stormpath Launches Mobile Support https://stormpath.com/blog/stormpath-mobile-support-ios-android/

• Tutorial: Build an iOS Application with Stormpathhttps://stormpath.com/blog/build-note-taking-app-swift-ios

• Stormpath iOS SDKhttps://github.com/stormpath/stormpath-sdk-ios

• iOS Example Application https://github.com/stormpath/stormpath-ios-notes-example

QUESTIONS?

THANK YOU

Mobile Authentication for iOS Applications - Stormpath 101

Software

Transcript of Mobile Authentication for iOS Applications - Stormpath 101

Authentication, Authorization, and Accounting ... · Authentication, Authorization, and Accounting Configuration Guide, Cisco IOS Release 15M&T Americas Headquarters Cisco Systems,

Configuring 802.1X Port-Based Authentication · 46-1 Catalyst 4500 Series Switch, Cisco IOS Software Configuration Guide - Cisco IOS XE 3.8.xE and IOS 15.2(4)Ex Chapter 46 Configuring

FILE OPEN MODES File open modes n ios::app n ios::ate n ios::binary n ios::in n ios::out n ios::trunc n ios::nocreate n ios::noreplace.

Stormpath 101: Spring Boot + Spring Security

Standards Supported in Cisco IOS and IOS-XE Software5310 IS-IS Generic Cryptographic Authentication Not supported 5309 Point-to-Point Operation over LAN in Link State Routing Protocols

Storing User Files with Express, Stormpath, and Amazon S3

What is this? Need help? Device: chan's iphone (iOS ... · Need help? Device: chan's iphone (iOS) Choose an authentication method Duo Push RECOMMENDED ... Remember me for 30 days

IEEE 802.1X VLAN Assignment - Cisco · IEEE 802.1X VLAN Assignment Feature Information for IEEE 802.1X VLAN Assignment 802.1X Authentication Services Configuration Guide, Cisco IOS

How to Use Stormpath in angular js

Introduction - 123seminarsonly.com · INTRODUCTION The Cisco IOS ... security capabilities, such as authentication, encryption, ... checklist of what should be monitored, permitted

n Client for iOS 4 - VMware€¦ · An iOS 8.4.1 or later operating system is required. Each client device that uses a smart card for user authentication must have the following hardware

Facebook SDK for iOS · Facebook SDK for iOS iOS Meetup November !", #$!# fb.me/ca.abernathy @abernathyca Tuesday, November 20, 12. Key topics! Why use the SDK? " Permission & authentication

No-Code SAML Support for SaaS Applications with Stormpath

IEEE 802.1X Port-Based Authentication - Cisco › c › en › us › td › docs › switches › lan › catalys… · CHAPTER 80-1 Cisco IOS Software Configuration Guide, Release

Token Management using Stormpath inside Mule

OSPF Commands - cisco.com · OSPF Commands area authentication IP2R-66 Cisco IOS IP Command Reference, Volume 2 of 3: Routing Protocols area authentication To enable authentication

Cisco IOS IP Command Reference, Volume 2 of 3: …€¢ Neighbor Router Authentication • IP Security Options • Supported AV Pairs Cisco IOS Interface Configuration Cisco IOS Interface

Set up an Outlook account for the in-built iOS Mail app · iOS Mail App 3 8. You will receive a prompt for multi-factor authentication, verify your identity, e.g. by entering a one-time

Authentication. TOPICS Objectives Legacy Authentication Protocols IEEE 802.1X Authentication Extensible Authentication Protocol (EAP) Authentication Servers.

Stormpath LDAP release notes