Chrome keeps prompting to open app
Opened this issue · 1 comments
Hi Kenneth, moving to the external browser approach appears to cause Chrome to keep prompting users whether they want to open the RP app after they are redirected back to the browser from the SP app after authenticating. Do you have any advice on how to work around this issue as it is causing security concerns among users that there are so many redirects and different apps opening in just a single login attempt? We noticed the same prompt in your animated gif of your SingPass Demo (Chrome Custom Tab) implementation.
Also, can i clarify on your use of the term "in-app browser"? Because for most people and on most websites written about this topic, "in-app browser" is synonymous with WebView, but i think you meant to say standalone browser or external browser instead, thanks!
Rgds,
Andrew
This chrome prompt is an expected behaviour as the chrome custom tab is trying to redirect back to the RP (your) app to deliver the auth code back.
I am guessing your redirect_uri is using https scheme. If you are using https redirect_uri you should be adding this query param redirect_uri_https_type=app_claimed_https so that the redirection page, with a button to launch your app if the automatic redirect does not work, would appear.
Please refer to Other Notes section, 4th point. Please also take note this query param is ONLY for pure Singpass login, and not MyInfo login using Singpass. This is also stated in the aforemention section.
Our definition of in-app browser basically is chrome custom tabs for Android. External browser is also acceptable, this would be used in the case where the device does not have any web browser app that can provide a custom tab.