How to implement OAuth (authorization code flow) for mobile-apps using deep-links as redirection URL

Question

Hello,does anyone know why it is currently not possible to configure an OAuth-Client config with Grant-Type 'Authorization Code Flow' and a 'custom-scheme'-redirect URI (mobile app deep-link)?For example I want to create a "Oauth Authorization Server - Client Application" with Grant-Type 'Authorization Code Flow' and as redirect URI i want to configure "com.mydomain.app://oauth/callback"Can someone explain why this is not working?Cheers&nbsp;

liefzimmerman · Answer

dgr84&nbsp;- thanks for the question. I see you've not had a response - lemme see who I can find.

nikoolayy1 · Answer

Have you tried some custom irule as I am not an oauth expert by no means but maybe try configure the redirect as an irule as the example below:
&nbsp;
https://community.f5.com/t5/technical-forum/original-url-redirect-after-apm-authentification/td-p/262148
&nbsp;
There is also an iRule option to be attached under the OAuth Server&nbsp; but there is not a lot of info for it:
&nbsp;
https://community.f5.com/t5/technical-forum/using-custom-oauth-client-irules/td-p/254118
&nbsp;

Forum Discussion

How to implement OAuth (authorization code flow) for mobile-apps using deep-links as redirection URL

2 Replies

Recent Discussions

google-visualization-issues

The best load balance method on this scenario?

SMS server with BIGIP

Geo Fence in ASM through irule for URI

Client certificate Authentication - open multiple tabs

Related Content

Protecting Your Native Mobile Apps with F5 XC Mobile App Shield

Bot Defense for Mobile Apps in XC WAAP Part 1: The Bot Defense Mobile SDK

JWT authorization with NGINX Ingress Controller

iRule - Authorization Bearer / Basic

OWASP Tactical Access Defense Series: Broken Object Property Level Authorization and BIG-IP APM