<html><head><meta http-equiv="Content-Type" content="text/html; charset=us-ascii"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; line-break: after-white-space;" class="">Yeah, Authenticator module is written by each apps, so it can be protected.<div class=""><br class=""><div class="">However, Account Manager caches tokens and account list registered for the issuer.</div><div class="">Those date is probably difficult to hide for 3rd-party apps, I guess.<br class=""><div><br class=""><blockquote type="cite" class=""><div class="">On Jan 18, 2019, at 0:18, George Fletcher <<a href="mailto:gffletch@aol.com" class="">gffletch@aol.com</a>> wrote:</div><br class="Apple-interchange-newline"><div class="">
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" class="">
<div text="#000000" bgcolor="#FFFFFF" class="">
<font face="Helvetica, Arial, sans-serif" class="">Hi Nov,<br class="">
<br class="">
I talked with our Android developer team and it's possible to use
an Authenticator module that is bound to the signing key and hence
protect the data so that only apps signed with that key can access
the data.<br class="">
<br class="">
Thanks,<br class="">
George<br class="">
</font><br class="">
<div class="moz-cite-prefix">On 6/24/18 9:11 PM, matake, nov wrote:<br class="">
</div>
<blockquote type="cite" cite="mid:CAHHppZ8bXq8SsbAn3fBpNSk9WQ14uc_D1Reb5yvXdv=mcPpzTw@mail.gmail.com" class="">
<meta http-equiv="content-type" content="text/html; charset=UTF-8" class="">
<div dir="ltr" class="">Hi,
<div class=""><br class="">
</div>
<div class="">In this spec, you are going to use Android Account Manager
as a credential storage for same vendor apps.</div>
<div class="">Is there such feature in the Account Manager?</div>
<div class=""><br class="">
</div>
<div class="">I thought all app can request any account type on the
Android platform if the caller app know the account type
identifier.</div>
<div class=""><br class="">
</div>
</div>
<div class="gmail_extra"><br class="">
<div class="gmail_quote">2018-06-23 2:30 GMT+09:00 George
Fletcher via Openid-specs-ab <span dir="ltr" class=""><<a href="mailto:openid-specs-ab@lists.openid.net" target="_blank" moz-do-not-send="true" class="">openid-specs-ab@lists.openid.net</a>></span>:<br class="">
<blockquote class="gmail_quote" style="margin:0 0 0
.8ex;border-left:1px #ccc solid;padding-left:1ex">Per the
notes from Thursday's OpenID Connect working group call,
here are text and xml formatted version of the Native SSO
for Mobile apps spec.<br class="">
<br class="">
Please note, the core text is here but this is no where near
final. Note that the text for additions for dynamic client
registration and other IANA registrations are text from the
"front channel logout" spec. I left the sections there as
they will likely be needed.<br class="">
<br class="">
The purpose here is to get the core text in the proper
format.<br class="">
<br class="">
Thanks,<br class="">
George<br class="">
<br class="">
<br class="">
______________________________<wbr class="">_________________<br class="">
Openid-specs-ab mailing list<br class="">
<a href="mailto:Openid-specs-ab@lists.openid.net" moz-do-not-send="true" class="">Openid-specs-ab@lists.openid.<wbr class="">net</a><br class="">
<a href="http://lists.openid.net/mailman/listinfo/openid-specs-ab" rel="noreferrer" target="_blank" moz-do-not-send="true" class="">http://lists.openid.net/<wbr class="">mailman/listinfo/openid-specs-<wbr class="">ab</a><br class="">
<br class="">
</blockquote>
</div>
<br class="">
</div>
</blockquote>
<br class="">
<pre class="moz-signature" cols="72">--
Identity Standards Architect
Verizon Media Work: <a class="moz-txt-link-abbreviated" href="mailto:george.fletcher@oath.com">george.fletcher@oath.com</a>
Mobile: +1-703-462-3494 Twitter: <a class="moz-txt-link-freetext" href="http://twitter.com/gffletch">http://twitter.com/gffletch</a>
Office: +1-703-265-2544 Photos: <a class="moz-txt-link-freetext" href="http://georgefletcher.photography/">http://georgefletcher.photography</a>
</pre>
</div>
</div></blockquote></div><br class=""></div></div></body></html>