If you have a native iOS application, you can use our SDK (CocoaPods, Github) to log users in to your application through Clever Instant Login. If you’d prefer to build your integration from scratch, we've outlined the necessary steps below.
Regardless of whether you’re using our SDK, or building your integration from scratch, you’ll need to enable iOS logins in Clever.
To get started, go to your Application Settings page and enable the iOS platform for your application:
Once you’ve enabled the iOS platform, you’ll find a new custom Redirect URL and Client ID on the Application Settings page.
The credentials above are no longer valid. You'll need to enable the iOS platform in your application to get valid credentials. If you don't see the option to enable the iOS platform, email us at firstname.lastname@example.org.
Below, we’ve outlined the steps you need to take in order to support Instant Login into your native iOS app. These are also implemented in our SDK, which you can use to simplify development.
When users click on your application's icon, they will be redirected to the custom URL specified in your iOS platform application settings. You should write code to handle requests at this path and initiate the login flow.
Next, you’ll need to create and store a random state parameter for each login. You’ll send this value to Clever and it will be returned back to you so that you can verify that it matches the original value.
See Keeping Instant Login Secure for more information on the state parameter.
To kick off a login, redirect the user to Clever in a web browser. Here’s the format:
https://clever.com/oauth/authorize?response_type=CODE&client_id=<your iOS platform client id>&redirect_uri=<your iOS custom redirect url>&state=<the state value you prepared in step 2>
If your app is running on iOS 9.0+, you should open this URL using SFSafariWebViewController. Otherwise, you can use UIWebView.
As of May 8, 2016, users can no longer log in to Google within UIWebView. if their device is running iOS 9.0+
Clever will then redirect the user back to your custom URL with a code and the state parameter as provided, exactly as we do on the web.
Unlike the regular flow for browser-based logins, you do not use a client secret to for the authorization header. Instead, you should use the client ID for the iOS platform and a blank client secret, like so:
http basic_auth_header = “Authorization: Basic “ + Base64.encode(ios_client_id + “:”)
The response from the bearer token call will yield an access token, which your app can use to access information in Clever's API. You can also use this access token to associate your server-side session with a Clever user.