@dansup there are some good arguments for using the browser for auth instead of implementing it in app, even if it isn’t as seamless. For instance Tusky broke SSO by switching to a WebView: https://github.com/tuskyapp/Tusky/issues/2767
@dansup in addition to the security arguments, my (still draft) patches to add OAuth support to PixelFed would require app changes unless the browser is used for authentication. https://github.com/pixelfed/pixelfed/pull/3436
@dansup in addition to the security arguments, my (still draft) patches to add OAuth support to PixelFed would require app changes unless the browser is used for authentication. https://github.com/pixelfed/pixelfed/pull/3436