Single Sign-on

Provide a seamless user experience across multiple applications with the single sign-on feature.

Single sign-on (SSO) is defined as login once, logged in all apps. If you have multiple mobile apps or websites that wants to streamline the user experiences. You can configure your apps to turn on the SSO feature, so the end-users only have to enter their authentication credentials once.

There are multiple ways to achieve Single Sign-on, with various pros-and-cons:

Related Feature Technical Remarks

	Related Feature	Technical Remarks
SSO between Websites with the same apex domain	Cookie-based Deployment	Requires all of the websites with the same "root domain" (e.g. app1.example.com and app2.example.com)
SSO between Mobile Apps and Browsers	SSO with Mobile App / Web SPA	Requires the use of `ASWebAuthentication` and `Custom Tab` on iOS/Android respectively
SSO between two independent mobile apps	App2App Login	Based on OIDC App2App
SSO from a Mobile App to Website	Pre-Authenticated URLs	Open a URL from Mobile App and pass the user session along, based on OIDC Token Exchange
SSO between Mobile Apps from the same publisher	Keychain Sharing / Android Account Manager (Contact us if you need it)	Requires both apps published by the same publisher from App Store.

SSO between Websites with the same apex domain

Cookie-based Deployment

Requires all of the websites with the same "root domain" (e.g. app1.example.com and app2.example.com)

SSO between Mobile Apps and Browsers

SSO with Mobile App / Web SPA

Requires the use of ASWebAuthentication and Custom Tab on iOS/Android respectively

SSO between two independent mobile apps

App2App Login

Based on OIDC App2App

SSO from a Mobile App to Website

Pre-Authenticated URLs

Open a URL from Mobile App and pass the user session along, based on OIDC Token Exchange