![]() ![]() ![]() MSAL on macOS uses access group by default.ĭue to macOS keychain limitations, MSAL's access group doesn't directly translate to the keychain access group attribute (see kSecAttrAccessGroup) on macOS 10.14 and earlier. On iOS, add the keychain group to your app's entitlement in XCode under Project settings > Capabilities > Keychain sharing. This ensures the best SSO experience between multiple apps from the same publisher. MSAL on iOS uses the access group by default. This article covers how to configure app entitlements so that MSAL can write cached tokens to iOS and macOS keychain. For more information, see Apple's Keychain Items documentation. ![]() SSO is achieved via the keychain access groups functionality. Caching tokens in the keychain allows MSAL to provide silent single sign-on (SSO) between multiple apps that are distributed by the same Apple developer. When the Microsoft Authentication Library for iOS and macOS (MSAL) signs in a user, or refreshes a token, it tries to cache tokens in the keychain. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |