ROS landed custom authentication with the ability to integrate with 3rd parties and validate a JWT token or other payload. We should have some easy drop-ins for the most common client-side auth processes: OAuth2, OpenID, AWS Cognito

Some third party authentication providers (eg, Amazon Cognito) implement strict password policies, up to and including:

• A minimum password length.
• A minimum number of capital letters.
• A minimum number of special characters (!,@,#,$,% etc).
• A minimum number of numerical digits.

The reasoning for breaking the form validation logic out to the LoginCredentialsValidationProtocol protocol was for this reason, so extending the form validation logic should be quite straightforward.

Additionally, for a good user experience, inserting a label explaining the password rules would also be desired.

Currently the lib isn't usable in production since it stores the password in NSUserDefaults. There is an existing issue proposing to use an encrypted Realm: #24 but it sounds like it's more of a "nice to have" instead of a must.

The lib needs to either store the password in the Keychain or use another more secure approach

Is a "forgot my password" feature built in to the loginkit?

It would be helpful to have a setting to allow the initial mode of LoginKit to be "register" - h/t to @pixelchef for pointing out that for many apps most users will be new users on the first run of an app.

Add a property to the class that would subsequently hide the registration toggle button.

There will be use cases where the applications want to allow users to log in but the IP address should not be able to set or edit the destination or even have the host address visible to the end user..

Some interesting things happening on my Mac right now in regard to loginkit, would appreciate any help!

I am trying to get simple username/password auth to work with my app. I have Realm LoginKit, GitHub link, installed in my app via CocoaPods, got the UI looking nice and everything seems to work. When I try to register a new user, I get two errors in Xcode:

2018-07-20 11:41:41.990195-0700 School of STEM[23825:467699] Task <EC0ECEFA-EDC3-433B-9986-18E2854A5668>.<1> finished with error - code: -1001
2018-07-20 11:41:42.006067-0700 School of STEM[23825:467699] Task <EC0ECEFA-EDC3-433B-9986-18E2854A5668>.<1> HTTP load failed (error code: -999 [1:89])

My realm URL is set as such:

loginViewController.serverURL = "https://school-of-stem.us1.cloud.realm.io"

I have also tried multiple times to auth in the simulator, and on only one of those occasions in the realm studio logs I got:

Could not send confirmation email:
authYesterday at 10:49 PM
▼context: Object
 service: "auth"
 code: "EENVELOPE"
 command: "API"
 timestamp: "2018-07-20T05:49:52.276Z"

and

HTTP response: 2b1c8c4d-a353-46c6-a0e3-18608619ea53 {"type":"https://realm.io/docs/object-server/problems/missing-parameters","title":"Your request did not validate because of missing parameters.","status":400,"code":602,"invalid_params":[{"name":"token","reason":"Missing parameter 'token'!"}]}
When running on physical device I get this output in debugger:

tcp_timers [C1.1:3] retransmit SYN 3
tcp_timers [C1.2:3] retransmit SYN 3
tcp_timers [C1.3:3] retransmit SYN 3
tcp_timers [C1.1:3] retransmit SYN 4
tcp_timers [C1.2:3] retransmit SYN 4
tcp_timers [C1.3:3] retransmit SYN 4
tcp_timers [C1.1:3] retransmit SYN 5
tcp_timers [C1.2:3] retransmit SYN 5
tcp_timers [C1.3:3] retransmit SYN 5
tcp_timers [C1.1:3] retransmit SYN 6
tcp_timers [C1.2:3] retransmit SYN 6
tcp_timers [C1.3:3] retransmit SYN 6
tcp_timers [C1.1:3] retransmit SYN 7
tcp_timers [C1.2:3] retransmit SYN 7
tcp_timers [C1.3:3] retransmit SYN 7
tcp_timers [C1.1:3] retransmit SYN 8
tcp_timers [C1.2:3] retransmit SYN 8
tcp_timers [C1.3:3] retransmit SYN 8

Also, another curious bit that may be helpful - when registering for the realm support forum, upon confirming my email, I would get a webpage saying nothing but “[BAD CSRF]” Then suddenly, it worked.

I thought maybe it was because I was running VPN, but even upon disabling VPN no dice. Cleaned build, restarted Xcode and PC - same results.

Maybe these are related? I am running Xcode 9.4.1 and MacOS 10.14 Beta (18A336e).

Thanks in advance!

For instances where we might be switching between a local device and a full RMP instance on a remote server, it would be nice to have a list of recent server URLs that can be used to switch.

The ability to automatically insert a username and password from the 1Password extension on iOS.

The status bar doesn't do any theming on its own; relying on the parent view controller on which it was presented. It would be more appropriate if it managed the color itself when in dark mode.

1. goals
   to login/sign up and present main view

2. expected results
   to see the mainview presented

3. actual results
   substring deprecated error on the public var URLPortNumber

4. steps to reproduce
   run realm loginkit

5. code sample

   public var URLPortNumber: Int {
   guard let portRange = self.range(of: ":", options: .backwards) else { return -1 }

    let startIndex = self.index(portRange.upperBound, offsetBy: 0)
    let endIndex = self.index(portRange.upperBound, offsetBy: 2)
    guard self[startIndex...endIndex] != "//" else { return -1 }
   
    return Int(self.substring(from: portRange.upperBound))! (deprecated framework function, locked file)
   

   }

6. xcode 9

7. cocoapod version 1.3.1

the substring deprecated error code runs when signing up a user via loginkit.

the default is great marketing; in shipping apps the user will probably want to apply their own logo and made-by line (i.e., mot co's will put a copyright or disclaimer there).

• Update code base for new Realm2.0 API

As displayed on the login panel, the app name will be truncated if it is too long

I would love to add this to my project through Carthage.

If you uncomment this existing line in RealmLoginKit Apple/RealmLoginKitExample/Controllers/ViewController.swift in order to use a AWSCognitoAuthenticationProvider the project won't build:

//        loginViewController.authenticationProvider = AWSCognitoAuthenticationProvider(serviceRegion: .USEast1, userPoolID: "",
//                                                                                      clientID: "",
//                                                                                      clientSecret: "")

Is the scope of this kit to only support username/password or are other auth methods going to be supported? @TimOliver

At the moment, the 'remember me' form details are persisted in NSUserDefaults, which is absolutely unacceptable for production RMP implementations.

At the very minimum, the passwords should be saved to the keychain, but ideally, a separate Realm file, properly isolated from the parent app's Realm implementation can be used to encrypt all of the data more efficiently.

(copied from @austinzheng's initial report in the PermissionTester repo)

Upon restarting the app, I get a crash in one of the lines of code below.

private func loadLoginCredentials() {
    let userDefaults = UserDefaults.standard
    serverURL = userDefaults.object(forKey: LoginViewController.serverURLKey) as! String?
    email = userDefaults.object(forKey:  LoginViewController.emailKey) as! String?
    password = userDefaults.object(forKey: LoginViewController.passwordKey) as! String?
}

The error is: Could not cast value of type '__NSCFData' (0x107d59680) to 'NSString' (0x105193c40)..

Update:
I believe it happened after I logged in with the "save credentials" switch toggled off, and killed the app and relaunched it. It happened every time I relaunched the app in the iOS Simulator until I reset the simulator and reinstalled the app.

I noticed that the Android version has been checked it, so I was wondering if I can start using it?

At the moment the app name displayed on the login panel seems to be the bundle name; if a display name (CFBundleDisplayName) is set, it should be used over the bundle name.

Using it to test the server, tried on a iPhone SE simulator.

As you can see in the image below, there are some ugly overlaps. It gets worse if you press the Register a New Account button.

Very soon, there will be versions of Realm LoginKit for Android and Xamarin too. This repo will need to be re-organized so the iOS version isn't on the top level.