Uploaded image for project: 'Atlassian Cloud'
  1. Atlassian Cloud
  2. CLOUD-11851

Option for mobile apps to use OS default browser during login

    XMLWordPrintable

Details

    • Suggestion
    • Resolution: Unresolved
    • Security
    • None
    • 3

    • Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

    • Jira Software, Jira Service Management, Jira Work Management, Confluence

    Description

      Logging into the Confluence, Opsgenie, and Jira mobile apps spawns an in-app browser that could possibly bypass MDM policies in place for the corporate device. Opening up possibilities of data exfiltration.

      Suggestion

      Allow an option for the Atlassian identity login flow on mobile apps to spawn a browser outside of the app (system default)

      This is particularly important for iOS users where Atlassian Mobile apps use the recommended API ASWebAuthenticationSessionwhich, which only allows the authentication to be executed on Safari engine, on a secure embedded web view:

      Considering that some companies might decide to block Safari due to their security policies, the SSO authentication using Safari is blocked and fails.

      Current Workarounds

      None available.

      Attachments

        Activity

          People

            Unassigned Unassigned
            cdegidio@atlassian.com Chris DeGidio
            Votes:
            3 Vote for this issue
            Watchers:
            5 Start watching this issue

            Dates

              Created:
              Updated: