Using OIDC for Easy Android Login
This tutorial will walk you through the simple steps to set up the Okta OIDC SDK on Android, leaving you with a working app that allows for secure login.
Join the DZone community and get the full member experience.
Join For FreeIn modern mobile apps, a dedicated auth page is a must. Users want the apps they love to be personalized and expect to be able to use services on different devices and platforms without a hassle. More important than this, they want to know that their data is secure.
When working on Android, the implementation process for secure login can be complex, as many different parts need to align correctly for it to work. On the Android side, you need to create an easy and engaging login UI, communicate with a back-end service, securely persist the user data, and maintain that data, as the user expects a single sign-on experience. In addition to that, you will need to have a back-end app for supporting the login feature in a secure and efficient way.
Here is where the Okta OIDC SDK comes in! As a mobile SDK developed by industry-leading security experts, the Okta OIDC SDK is designed to provide a simple alternative for your users to log into your app. By using OAuth 2.0 and OpenID Connect (OIDC), this is made easy, as these are the security industry’s standards for authorization and authentication. To learn more, consider reading An Illustrated Guide to OAuth and OpenID Connect.
This tutorial will walk you through the simple steps to set up the Okta OIDC SDK on Android, leaving you with a working app that allows for secure login.
Create an Android Login Application
To begin, create a new Android app. It will consist of three screens:
- Splash screen where you figure out if the user is already logged in or not.
- Login screen.
- Home screen, which is only accessible to the logged-in users.
First, you’ll need to download and install the latest version of Android Studio (v4.1.1 at the time of this writing).
Next, launch the app and navigate to File → New… → New Project…. Then, create an "Empty Activity" for "Phone and Tablet." You should now see a screen similar to this:
Change your application name and add the right package name, set the minimum SDK to API 23, and click Finish to create the project.
Add the Okta Android OIDC SDK
Android apps use Gradle as their build tool. To add the Okta OIDC SDK as a dependency to your project, you will need to modify the app module’s build.gradle file:
You need to add the right auth redirect scheme for your Okta app and add the Okta library as a dependency. Make sure the applicationId matches what you used when creating your app.
Groovy
x
52
1
plugins {
2
id 'com.android.application'
3
id 'kotlin-android'
4
}
5
6
android {
7
compileSdkVersion 29
8
buildToolsVersion "30.0.2"
9
defaultConfig {
10
applicationId "dev.dbikic.oktaloginexample"
11
minSdkVersion 23
12
targetSdkVersion 29
13
versionCode 1
14
versionName "1.0"
15
16
testInstrumentationRunner "androidx.test.runner.AndroidJUnitRunner"
17
18
manifestPlaceholders = [
19
"appAuthRedirectScheme": "com.okta.dev-123456"
20
]
21
}
22
buildFeatures {
23
viewBinding true
24
}
25
buildTypes {
26
release {
27
minifyEnabled false
28
proguardFiles getDefaultProguardFile('proguard-android-optimize.txt'), 'proguard-rules.pro'
29
}
30
}
31
compileOptions {
32
sourceCompatibility JavaVersion.VERSION_1_8
33
targetCompatibility JavaVersion.VERSION_1_8
34
}
35
kotlinOptions {
36
jvmTarget = '1.8'
37
}
38
}
39
40
dependencies {
41
implementation "org.jetbrains.kotlin:kotlin-stdlib:$kotlin_version"
42
implementation 'androidx.core:core-ktx:1.3.2'
43
implementation 'androidx.appcompat:appcompat:1.2.0'
44
implementation 'com.google.android.material:material:1.2.1'
45
implementation "androidx.constraintlayout:constraintlayout:2.0.4"
46
47
implementation 'com.okta.android:oidc-androidx:1.0.17'
48
49
testImplementation 'junit:junit:4.+'
50
androidTestImplementation 'androidx.test.ext:junit:1.1.2'
51
androidTestImplementation 'androidx.test.espresso:espresso-core:3.3.0'
52
}
- The redirect URI for the application you created in your Okta Developer Console.
- We are using a view binding feature to interact with our views. More information can be found here.
- Okta OIDC libraries require Java 1.8 compatibility.
- Add the dependency required for the Okta OIDC library.
Sync the project with Gradle files by clicking the File → Sync Project with Gradle Files, so the Okta dependency gets downloaded.
Install the Okta CLI
Getting started with Okta is made quite straightforward with the help of the Okta CLI. It’s a tool that makes creating an Okta account and an Okta application a breeze!
The Okta CLI is available for macOS, Linux, and Windows.
MacOS (via Homebrew)
Shell
xxxxxxxxxx
1
1
brew install --cask oktadeveloper/tap/okta
Linux (via Flatpak)
Shell
xxxxxxxxxx
1
1
flatpak remote-add --if-not-exists flathub https://flathub.org/repo/flathub.flatpakrepo
2
flatpak install com.okta.developer.CLI
3
alias okta="flatpak run com.okta.developer.CLI"
Windows (via Chocolatey)
Shell
xxxxxxxxxx
1
1
choco install okta --version=0.7.1
If you don’t want to use a package manager, you can install the Okta CLI with curl and bash.
Shell
xxxxxxxxxx
1
1
curl https://raw.githubusercontent.com/oktadeveloper/okta-cli/master/cli/src/main/scripts/install.sh | bash
Register Your Android Application
To create an Okta developer account, simply run the following command:
Shell
xxxxxxxxxx
1
1
okta register
You will be prompted with a few questions:
Shell
xxxxxxxxxx
1
15
1
➜ okta register
2
First name: Dino
3
Last name: Bikic
4
Email address: ******@*****.***
5
Company: Okta
6
Creating new Okta Organization, this may take a minute:
7
OrgUrl: https://dev-123456.okta.com (1)
8
An email has been sent to you with a verification code.
9
10
Check your email
11
Verification code: 123456 (2)
12
13
Your Okta Domain: https://dev-123456.okta.com
14
To set your password open this link:
15
https://dev-123456.okta.com/welcome/drp7UBGB_GVjeHp_5Jbs (3)
(1) This is your Okta domain; you will need it later
(2) Enter the code you receive in your email.
(3) Click on this link to change your password. You will need these credentials for this example
Create an Okta OIDC App
To create a new Okta OIDC app, run the following command:
Shell
xxxxxxxxxx
1
1
okta apps create
You will be prompted with a few questions:
Shell
xxxxxxxxxx
1
20
1
➜ okta apps create
2
Application name [dbikic]: Android Login(1)
3
Type of Application
4
(The Okta CLI only supports a subset of application types and properties):
5
> 1: Web
6
> 2: Single Page App
7
> 3: Native App (mobile)(2)
8
> 4: Service (Machine-to-Machine)
9
Enter your choice [Web]: 3
10
Redirect URI
11
Common defaults:
12
Reverse Domain name - com.okta.dev-123456:/callback
13
Enter your Redirect URI [com.okta.dev-123456:/callback]:(3)
14
Enter your Post Logout Redirect URI [com.okta.dev-123456:/]:(4)
15
Configuring a new OIDC Application, almost done:
16
Created OIDC application, client-id: ********************
17
18
Okta application configuration:
19
okta.oauth2.issuer: https://dev-123456.okta.com/oauth2/default
20
okta.oauth2.client-id: ******************** (5)
(1) Name your Okta app
(2) Native app (mobile) is the option to select for Android applications.
(3) Press enter for the default value. You will need this value for the Okta library setup.
(4) Press enter for the default value. You will need this value for the Okta library setup.
(5) You will need this ID for the initialization of the Okta library in your application
Create an Android Application Class
In the root folder of your app’s package (in the provided example, that’s the folder app/src/main/java/dev/dbikic/oktaloginexample) create a Kotlin application class named`OktaLoginApplication`.
For now, just create the class and make it extend the Application class from the Android framework.
Kotlin
xxxxxxxxxx
1
1
package dev.dbikic.oktaloginexample (1)
2
3
import android.app.Application
4
5
class OktaLoginApplication : Application()
(1) Update the package to match the one you set when creating the project.
After creating the application class, you need to reference it in your app/src/main/AndroidManifest.xml file:
XML
xxxxxxxxxx
1
16
1
2
<manifest xmlns:android="http://schemas.android.com/apk/res/android"
3
package="dev.dbikic.oktaloginexample">
4
5
<uses-permission android:name="android.permission.INTERNET" /> (1)
6
7
<application
8
android:allowBackup="true"
9
android:icon="@mipmap/ic_launcher"
10
android:label="@string/app_name"
11
android:name=".OktaLoginApplication" (2)
12
android:roundIcon="@mipmap/ic_launcher_round"
13
android:supportsRtl="true"
14
android:theme="@style/Theme.OktaLoginExample" />
15
</manifest>
(1) Okta OIDC SDK needs internet permission to communicate with the back-end
(2) Reference the application class you created in the previous step.
Manage Authentication With a Manager Class
When adding third-party libraries to your codebase, it’s usually a good idea to create a wrapper class that will hide the actual usage. Reasons for this include:
Reusing of the common interaction with the libraries.
You can define all the library interactions in an interface and provide the actual implementation with dependency injection throughout your app.
Everything related to that library is in one place. Replacing the library with a different one is easy as you only need to change the wrapper class.
Because the above, create a class called OktaManager in the root package. This class will be used in all the screens you create:
Kotlin
xxxxxxxxxx
1
65
1
package dev.dbikic.oktaloginexample
2
3
import android.app.Activity
4
import android.content.Context
5
import com.okta.oidc.*
6
import com.okta.oidc.clients.sessions.SessionClient
7
import com.okta.oidc.clients.web.WebAuthClient
8
import com.okta.oidc.net.response.UserInfo
9
import com.okta.oidc.storage.security.DefaultEncryptionManager
10
import com.okta.oidc.util.AuthorizationException
11
12
class OktaManager(applicationContext: Context) {
13
14
/**
15
* Authorization client using chrome custom tab as a user agent.
16
*/
17
private var webAuth: WebAuthClient (1)
18
19
/**
20
* The authorized client to interact with Okta's endpoints.
21
*/
22
private var sessionClient: SessionClient (2)
23
24
init {
25
val config = OIDCConfig.Builder()
26
.clientId("********************") (3)
27
.discoveryUri("https://dev-123456.okta.com") (4)
28
.redirectUri("com.okta.dev-123456:/callback") (5)
29
.endSessionRedirectUri("com.okta.dev-123456:/") (6)
30
.scopes("openid", "profile", "offline_access")
31
.create()
32
webAuth = Okta.WebAuthBuilder()
33
.withConfig(config)
34
.withContext(applicationContext)
35
.withCallbackExecutor(null)
36
.withEncryptionManager(DefaultEncryptionManager(applicationContext))
37
.setRequireHardwareBackedKeyStore(true) (7)
38
.create()
39
sessionClient = webAuth.sessionClient
40
}
41
42
fun isAuthenticated(): Boolean {
43
return sessionClient.isAuthenticated
44
}
45
46
fun registerWebAuthCallback(callback: ResultCallback<AuthorizationStatus, AuthorizationException>, activity: Activity) {
47
webAuth.registerCallback(callback, activity)
48
}
49
50
fun registerUserProfileCallback(callback: RequestCallback<UserInfo, AuthorizationException>) {
51
sessionClient.getUserProfile(callback)
52
}
53
54
fun signIn(activity: Activity, payload: AuthenticationPayload) {
55
webAuth.signIn(activity, payload)
56
}
57
58
fun signOut(activity: Activity, callback: RequestCallback<Int, AuthorizationException>) {
59
webAuth.signOut(activity, callback)
60
}
61
62
fun clearUserData() {
63
sessionClient.clear()
64
}
65
}
(1) private lateinit var webAuth: WebAuthClient is a reference to the web client you will invoke to log in.
(2) private lateinit var sessionClient: SessionClient refers to the session you can use to conduct multiple operations after logging in, such as getting the user’s profile, revoking the authentication token, refreshing the authentication token, etc.
(3) Replace with your client ID.
(4) Replace with your discovery URL.
(5) Replace with your redirect URL.
(6) Replace with your end session redirect URL.
(7) setRequireHardwareBackedKeyStore(true) forces the app to require a device with encryption capabilities. This is the default configuration for Okta OIDC, and it’s considered the best practice. If you want to run this code in an emulator, though, you can temporarily set it to false.
The last step of the setup stage will be to initialize the OktaManager. Remember the empty OktaLoginApplication class? Now you need to modify it to initialize the manager when the app is created.
Kotlin
xxxxxxxxxx
1
13
1
package dev.dbikic.oktaloginexample
2
3
import android.app.Application
4
5
class OktaLoginApplication : Application() {
6
7
lateinit var oktaManager: OktaManager
8
9
override fun onCreate() {
10
super.onCreate()
11
oktaManager = OktaManager(this)
12
}
13
}
That’s it! Now, let’s create the screens.
Add an Android Splash Screen
The purpose of a splash screen is to initialize all the applications' dependencies and prepare the app for usage. You’ll use it to figure out if the user is authenticated and decide which screen to show next: the login screen or the home screen.
Create a SplashActivity class in the root package.
Kotlin
xxxxxxxxxx
1
30
1
package dev.dbikic.oktaloginexample
2
3
import android.content.Intent
4
import android.os.Bundle
5
import androidx.appcompat.app.AppCompatActivity
6
import dev.dbikic.oktaloginexample.ui.LoginActivity
7
8
class SplashActivity : AppCompatActivity() {
9
10
(1)
11
private val oktaManager: OktaManager by lazy { (application as OktaLoginApplication).oktaManager }
12
13
override fun onCreate(savedInstanceState: Bundle?) {
14
super.onCreate(savedInstanceState)
15
if (oktaManager.isAuthenticated()) {
16
navigateToHome()
17
} else {
18
navigateToLogin()
19
}
20
}
21
22
private fun navigateToHome() {
23
// todo implement
24
}
25
26
private fun navigateToLogin() {
27
startActivity(Intent(this, LoginActivity::class.java)) (2)
28
finish()
29
}
30
}
(1) For simplicity, the instance of the OktaManager class is in the application class so that it can be easily accessed from all the activities. The real-world solution here would be to use dependency injection and inject the instance class
(2) Ignore the unresolved reference error for now because we will add the missing class in the next step.
Register the activity in the AndroidManifest.xml file:
XML
xxxxxxxxxx
1
24
1
2
<manifest xmlns:android="http://schemas.android.com/apk/res/android"
3
package="dev.dbikic.oktaloginexample">
4
5
<uses-permission android:name="android.permission.INTERNET" />
6
7
<application
8
android:allowBackup="true"
9
android:icon="@mipmap/ic_launcher"
10
android:label="@string/app_name"
11
android:name=".OktaLoginApplication"
12
android:roundIcon="@mipmap/ic_launcher_round"
13
android:supportsRtl="true"
14
android:theme="@style/Theme.OktaLoginExample">
15
16
<activity
17
android:name=".SplashActivity">
18
<intent-filter> (1)
19
<action android:name="android.intent.action.MAIN" />
20
<category android:name="android.intent.category.LAUNCHER" />
21
</intent-filter>
22
</activity>
23
</application>
24
</manifest>
(1) This intent filter specifies that the SplashActivity is the first activity that will be shown when the app is launched.
This class won’t compile just yet. You’ll need to create HomeActivity and LoginActivity classes before it does.
Build an Android Login Screen
Now, let’s do the LoginActivity! First, create a simple layout with a button in app/src/main/res/layout/activity_login.xml:
XML
xxxxxxxxxx
1
21
1
2
<androidx.constraintlayout.widget.ConstraintLayout xmlns:android="http://schemas.android.com/apk/res/android"
3
xmlns:app="http://schemas.android.com/apk/res-auto"
4
xmlns:tools="http://schemas.android.com/tools"
5
android:layout_width="match_parent"
6
android:layout_height="match_parent"
7
android:background="@color/white"
8
android:orientation="vertical"
9
tools:context=".LoginActivity">
10
11
<Button
12
android:id="@+id/signInButton"
13
android:layout_width="match_parent"
14
android:layout_height="wrap_content"
15
android:layout_margin="40dp"
16
android:text="Sign in"
17
app:layout_constraintEnd_toEndOf="parent"
18
app:layout_constraintStart_toStartOf="parent"
19
app:layout_constraintBottom_toBottomOf="parent" />
20
21
</androidx.constraintlayout.widget.ConstraintLayout>
Then, create the LoginActivity class in a new ui package:
Java
xxxxxxxxxx
1
64
1
package dev.dbikic.oktaloginexample.ui
2
3
import android.content.Intent
4
import android.os.Bundle
5
import android.util.Log
6
import androidx.appcompat.app.AppCompatActivity
7
import com.okta.oidc.*
8
import com.okta.oidc.AuthorizationStatus.*
9
import com.okta.oidc.util.AuthorizationException
10
import dev.dbikic.oktaloginexample.OktaLoginApplication
11
import dev.dbikic.oktaloginexample.OktaManager
12
import dev.dbikic.oktaloginexample.databinding.ActivityLoginBinding
13
14
class LoginActivity : AppCompatActivity() {
15
16
private val oktaManager: OktaManager by lazy { (application as OktaLoginApplication).oktaManager }
17
private lateinit var binding: ActivityLoginBinding
18
19
override fun onCreate(savedInstanceState: Bundle?) {
20
super.onCreate(savedInstanceState)
21
binding = ActivityLoginBinding.inflate(layoutInflater)
22
setContentView(binding.root)
23
setupOktaCallback()
24
setupViews()
25
}
26
27
private fun setupOktaCallback() {
28
oktaManager.registerWebAuthCallback(getAuthCallback(), this)
29
}
30
31
private fun setupViews() {
32
binding.signInButton.setOnClickListener {
33
val payload = AuthenticationPayload.Builder().build()
34
oktaManager.signIn(this, payload)
35
}
36
}
37
38
private fun getAuthCallback(): ResultCallback<AuthorizationStatus, AuthorizationException> {
39
return object : ResultCallback<AuthorizationStatus, AuthorizationException> {
40
override fun onSuccess(result: AuthorizationStatus) {
41
when (result) {
42
AUTHORIZED -> navigateToHome()
43
SIGNED_OUT -> Log.d("LoginActivity", "Signed out")
44
CANCELED -> Log.d("LoginActivity", "Canceled")
45
ERROR -> Log.d("LoginActivity", "Error")
46
EMAIL_VERIFICATION_AUTHENTICATED -> Log.d("LoginActivity", "Email verification authenticated")
47
EMAIL_VERIFICATION_UNAUTHENTICATED -> Log.d("LoginActivity", "Email verification unauthenticated")
48
}
49
}
50
51
override fun onCancel() {
52
Log.d("LoginActivity", "Canceled")
53
}
54
55
override fun onError(msg: String?, exception: AuthorizationException?) {
56
Log.d("LoginActivity", "Error: $msg")
57
}
58
}
59
}
60
61
private fun navigateToHome() {
62
// todo implement
63
}
64
}
(1) Register the auth callback with the OktaManager.
(2) Call the sign-in method when the button is clicked.
(3) The result is an AuthorizationStatus object. With a simple when expression we can quickly figure out the status type and access its members if needed.
And register it in the AndroidManifest.xml:
XML
xxxxxxxxxx
1
12
1
2
<manifest xmlns:android="http://schemas.android.com/apk/res/android"
3
package="dev.dbikic.oktaloginexample">
4
...
5
<application
6
... >
7
...
8
<activity
9
android:name=".ui.LoginActivity"
10
android:theme="@style/Theme.MaterialComponents.Light.NoActionBar" />
11
</application>
12
</manifest>
The purpose of the LoginActivity is to try to authenticate the user with Okta when the login button is pressed. To achieve that, you need to register the web auth callback with the Okta OIDC SDK, and call the signIn() method.
This is enough for the SDK to open a custom Chrome tab with the login screen of the Okta application. Users input their credentials into the form, and when the process is finished, the appropriate method of your auth callback will be called. This allows you to gracefully handle the possible errors or handle the login success, which is, in this case, navigating to the HomeActivity.
Create an Android Home Screen
HomeActivity is the part of your app which can be accessed only by authorized users. In this example, you can fetch the user details, display the user name on the UI, and sign the user out of the app. First, create the layout file in res/layout/activity_home.xml:
XML
xxxxxxxxxx
1
26
1
2
<LinearLayout xmlns:android="http://schemas.android.com/apk/res/android"
3
xmlns:tools="http://schemas.android.com/tools"
4
android:layout_width="match_parent"
5
android:layout_height="match_parent"
6
android:orientation="vertical"
7
tools:context=".HomeActivity">
8
9
<TextView
10
android:id="@+id/userLabel"
11
android:layout_width="match_parent"
12
android:layout_height="0dp"
13
android:layout_weight="1"
14
android:gravity="center"
15
android:textSize="22sp"
16
tools:ignore="HardcodedText"
17
tools:text="Hello, user!" />
18
19
<Button
20
android:id="@+id/signOutButton"
21
android:layout_width="match_parent"
22
android:layout_height="wrap_content"
23
android:layout_margin="40dp"
24
android:text="Log out"
25
tools:ignore="HardcodedText" />
26
</LinearLayout>
Then, create the HomeActivity:
Kotlin
xxxxxxxxxx
1
57
1
package dev.dbikic.oktaloginexample.ui
2
3
import android.content.Intent
4
import android.os.Bundle
5
import android.util.Log
6
import androidx.appcompat.app.AppCompatActivity
7
import com.okta.oidc.RequestCallback
8
import com.okta.oidc.net.response.UserInfo
9
import com.okta.oidc.util.AuthorizationException
10
import dev.dbikic.oktaloginexample.OktaLoginApplication
11
import dev.dbikic.oktaloginexample.OktaManager
12
import dev.dbikic.oktaloginexample.databinding.ActivityHomeBinding
13
14
class HomeActivity : AppCompatActivity() {
15
16
private val oktaManager: OktaManager by lazy { (application as OktaLoginApplication).oktaManager }
17
private lateinit var binding: ActivityHomeBinding
18
19
override fun onCreate(savedInstanceState: Bundle?) {
20
super.onCreate(savedInstanceState)
21
binding = ActivityHomeBinding.inflate(layoutInflater)
22
setContentView(binding.root)
23
24
oktaManager.registerUserProfileCallback(getUserProfileCallback())
25
binding.signOutButton.setOnClickListener {
26
oktaManager.signOut(this, getSignOutCallback())
27
}
28
}
29
30
private fun getSignOutCallback(): RequestCallback<Int, AuthorizationException> {
31
return object : RequestCallback<Int, AuthorizationException> {
32
override fun onSuccess(result: Int) {
33
oktaManager.clearUserData()
34
val intent = Intent(this@HomeActivity, LoginActivity::class.java)
35
intent.flags = Intent.FLAG_ACTIVITY_CLEAR_TOP
36
startActivity(intent)
37
finish()
38
}
39
40
override fun onError(msg: String?, exception: AuthorizationException?) {
41
Log.d("HomeActivity", "Error: $msg")
42
}
43
}
44
}
45
46
private fun getUserProfileCallback(): RequestCallback<UserInfo, AuthorizationException> {
47
return object : RequestCallback<UserInfo, AuthorizationException> {
48
override fun onSuccess(result: UserInfo) {
49
binding.userLabel.text = "Hello, ${result["preferred_username"]}!"
50
}
51
52
override fun onError(msg: String?, exception: AuthorizationException?) {
53
Log.d("HomeActivity", "Error: $msg")
54
}
55
}
56
}
57
}
(1) Register the user profile callback with the OktaManager.
(2) Sign out from the app on the sign out button.
(3) After the user is successfully logged out from Okta, clear the user’s data.
(4) Navigate the user back to the LoginActivity after they sign out.
(5) This flag makes sure that all the back stack activities are cleared and that the LoginActivity will be the only activity in the memory.
(6) You have fetched the user info successfully! You can check which fields you received here.
And register it in the AndroidManifest.xml:
XML
xxxxxxxxxx
1
12
1
2
<manifest xmlns:android="http://schemas.android.com/apk/res/android"
3
package="dev.dbikic.oktaloginexample">
4
...
5
<application
6
... >
7
...
8
<activity
9
android:name=".ui.HomeActivity"
10
android:theme="@style/Theme.MaterialComponents.Light.NoActionBar" />
11
</application>
12
</manifest>
You can now implement the empty method navigateToHome() in both SplashActivity and LoginActivity.
Kotlin
xxxxxxxxxx
1
1
import dev.dbikic.oktaloginexample.ui.HomeActivity
2
3
...
4
5
private fun navigateToHome() {
6
startActivity(Intent(this, HomeActivity::class.java))
7
finish()
8
}
Run Your Android Application
Now it’s time to run the application on an emulator or on a physical device, by pressing the play icon in the top right part of Android Studio. Your app and its login process should look similar to the video below:
What’s cool about the Okta OIDC SDK is that it also securely stores the user session to the app’s local storage and maintains its state for you. Instead of creating a custom user management system and handling multiple edge-cases that can happen in the real world, you can concentrate on spending your time building app features for your users.
You also implemented the logout flow, which is triggered by the user clicking the Log Out button:
Learn More About Android and OIDC
This post showcased how easy it is to set up and use the Okta OIDC SDK for an Android app. The functionalities which the SDK brings to your app, like the OAuth 2.0 authorization and OpenID Connect authentication, are essential for a modern-day app with challenges like security and data privacy.
Creating a custom solution for security and privacy is challenging and time-consuming since the code on the mobile part is not enough, and you also need to have a back-end app that supports those features. Maintaining two applications can cause a lot of long-term work.
You can find the source code for this example on GitHub, in the oktadeveloper/okta-android-login-example repository.
Topics:
oauth,
security,
okta,
oidc,
android,
android studio,
tutorial
Published at DZone with permission of Dino Bikić. See the original article here.
Opinions expressed by DZone contributors are their own.
Comments