Things I’m having trouble with
I’m trying to implement OAuth 2.0 in my iOS app to call the Square Locations API. I’m trying to use AppAuth, which is a common OAuth 2.0 library, but I’m having trouble because Square’s application only allows URLs that start with https format in the redirect URI.
It is common nowadays to use custom schemas for redirect URIs other than https for security reasons in iOS applications. The OAuth library I tried, AppAuth, also did not support https.
Question
- Do you have any plans to support anything other than https? Why don’t you support it?
- Isn’t Square’s OAuth supposed to be called from iOS or Android apps?
- What is the best way to call the Locations API in an iOS app? It would be helpful to know the recommended patterns of OAuth 2.0 implementation recommended by Square’s engineers, and the recommended libraries that have been tested internally.