At the moment we use the Azure B2C ROPC flow to authenticate users in our native apps (iOs and Android). Because of security considerations and allowing the usage of multifactor authentication\single sign-on we would like to get rid of this flow. But when we submitted our app for approval it was rejected by Apple, because they want that the users stays inside the app when authenticating or subscribing. So we had to put back the ROPC flow. Anybody has an idea how we can provide an in app experience for subscribing and signing in, but without having to use the ROPC flows?
CodePudding user response:
Using User Flows or Custom Policies (excluding ROPC flows) within an embedded webview will get approved. The MSAL library does this by default, sample here.