Google+ for Mobile Apps on iOS and Android

Google+ for Mobile
Apps on iOS & Android

Peter Friese
Developer Advocate, Google
google.com/+PeterFriese
@peterfriese
http://peterfriese.de

Google+ is…!
a social network
Image credit: https://www.flickr.com/photos/dainbinder/10538549606/

An identity provider
Image credit: http://www.wlmht.nhs.uk/wp-content/uploads/2012/09/passport-photos.jpg

αὐθεντικός (greek):!
!
• “that comes from the author”!
• authentic!
• original!
• genuine

Authentication -
How hard can it
be?
Image credit: https://www.flickr.com/photos/92269745@N00/3801617675

Hard for developers…!
... Implementation!
... Infrastructure!
... Security!
... Multiple platforms

Hard for your users…
... more passwords
... more devices
... more trust
Image credit: https://flic.kr/p/frJ48

You might even be in the news!

Image credit: https://kezialubanszky.files.wordpress.com/2013/03/don-t-panic-2568311.jpg

±

KEEP CALM

AND

SIGN IN

WITH 
GOOGLE+

Easier for you

Easier for the user

Established, trusted brand

Focus on your business
model

Cross-Device
Single Sign-on
No tap required, log-in will happen automatically!

How does Google+ Sign-in work?
Based on OAuth 2.0
AppUser
Google
Consent Permission
No password sharing
Scoped access
Revocable

Setting up
Developer Console Project
https://developers.google.com/console
APIs
Credentials
iOS Client ID
Android Client ID
Web Client ID
Branding
Permissions
Management

The Auth Triangle
You Google
Connecting lines
need authentication
Client
Server
Google APIs

Client Authentication
You Google
Client
Server
Google APIs

Client Authentication: Android
Overview
Create OAuth 2.0 client ID
Link with Google Play Services API
Setup Sign-In

SDK Architecture
Android
Your App
Google APIs
Google Play
Client Library
Google Play
Services APK
Authorize using existing
accounts on Android device

GoogleApiClient Lifecycle
mApiClient = new GoogleApiClient.Builder(this)
.addConnectionCallbacks(this)
.addOnConnectionFailedListener(this)
.addApi(Plus.API, null)
.addScope(Plus.SCOPE_PLUS_LOGIN)
.build();
Java
onCreate()
onStart() mApiClient.connect();
Java
onStop()
if (mApiClient.isConnected()) {
mApiClient.disconnect();
}
Java
<com.google.android.gms.common.SignInButton
android:id="@+id/sign_in_button"
android:layout_width="wrap_content"
android:layout_height="wrap_content"/>
XML
running

Handling Connection Failure
public void onConnectionFailed(ConnectionResult result) {
if (!mIntentInProgress && result.hasResolution()) {
try {
mIntentInProgress = true;
startIntentSenderForResult(result.getResolution().getIntentSender(),
RC_SIGN_IN, null, 0, 0, 0);
} catch (SendIntentException e) {
// The intent was canceled before it was sent. Return to the default
// state and attempt to connect to get an updated ConnectionResult.
mIntentInProgress = false;
mApiClient.connect();
}
}
}
Java

Handle connection failure
public void onConnectionFailed(ConnectionResult result) {
if (!mIntentInProgress && result.hasResolution()) {
try {
mIntentInProgress = true;
startIntentSenderForResult(result.getResolution().getIntentSender(),
RC_SIGN_IN, null, 0, 0, 0);
} catch (SendIntentException e) {
// The intent was canceled before it was sent. Return to the default
// state and attempt to connect to get an updated ConnectionResult.
mIntentInProgress = false;
mApiClient.connect();
}
}
}
Java
User needs to select account, consent to permissions, ensure
network connectivity, etc. to connect

Connection successful
public void onConnected(Bundle connectionHint) {
// Retrieve some profile information to personalize our app for the user.
Person currentUser = Plus.PeopleApi.getCurrentPerson(mApiClient);

// Indicate that the sign in process is complete.
mSignInProgress = STATE_DEFAULT;
}
Java

Client Authentication: iOS
Overview
Integrate SDK
Setup Sign-In

SDK Architecture
iOS
Your App
Google APIs
Google+
iOS SDK
Statically linked library

Conﬁgure Sign-In
#import <GooglePlus/GooglePlus.h>
#import <GoogleOpenSource/GoogleOpenSource.h>
!
...
!
!
GPPSignIn *signIn = [GPPSignIn sharedInstance];
signIn.shouldFetchGoogleUserEmail = YES;
!
signIn.clientID = @“YOUR_CLIENT_ID”;
signIn.scopes = @[@"profile"];
signIn.delegate = self;
Objective-C

Perform Sign-In, Option 1 (use our button)

Perform Sign-In, Option 2 (create your own button)
Create own button / use action sheet / …
// trigger sign-in
[[GPPSignIn sharedInstance] authenticate];
Objective-C
Silent sign-in if user has signed in before
// silently sign in
[[GPPSignIn sharedInstance] trySilentAuthentication];
Objective-C

Receiving the authorisation
// In ApplicationDelegate
- (BOOL)application:(UIApplication *)application
openURL:(NSURL *)url
sourceApplication:(NSString *)sourceApplication
annotation:(id)annotation
{
return [GPPURLHandler handleURL:url
sourceApplication:sourceApplication
annotation:annotation];
}
!
!
// GPPSignInDelegate
- (void)finishedWithAuth:(GTMOAuth2Authentication *)auth
error:(NSError *)error
{
if (!error) {
NSString *gplusId = [GPPSignIn sharedInstance].userID;
}
}
Objective-C

Client Authentication: Web
Overview
Include JavaScript client on your web page
Add Google+ Sign-in button
Handle callback

Architecture
Browser
Your site
Google APIsplusone.js

Integrate sign-in button
<div id="gConnect">
<button class="g-signin"
data-scope="https://www.googleapis.com/auth/plus.login"
data-requestvisibleactions="http://schemas.google.com/AddActivity"
data-clientId="YOUR_CLIENT_ID"
data-callback="onSignInCallback"
data-cookiepolicy="single_host_origin">
</button>
</div>
!
<!-- Place plusone.js asynchronous JavaScript just before your </body> tag —>
HTML

Handle authorization callback
function onSignInCallback(authResult) {
if (authResult['access_token']) {
// Successfully authorized
} else if (authResult['error']) {
// User is not signed in.
}
}
JavaScript

Server Authentication
You Google
Client
Server
Google APIs

One-Time-Code Flow
C
li
e
n
t
S
e
r
v
e
r
Google
APIs
1: Client-side auth request
2: OAuth dialog
triggeredOAuth
2.0
Dialog
3: access_token,
one-time code,
id_token
4: one-time code 5: exchange one-time codefor access_token andrefresh_token
6: access_token,
refresh_token
7: “fully logged in”

Server Auth: One-Time Code
Integrate sign-in button
<div id="gConnect">
<button class="g-signin"
data-scope="https://www.googleapis.com/auth/plus.login"
data-requestvisibleactions="http://schemas.google.com/AddActivity"
data-clientId="YOUR_CLIENT_ID"
data-callback="onSignInCallback"
data-cookiepolicy=“single_host_origin">
data-callback="signInCallback">
</button>
</div>
!
<!-- Place plusone.js asynchronous JavaScript just before your </body> tag —>
HTML

Handle authorization callback
function signInCallback(authResult) {
if (authResult['code']) {
// Send the code to the server
$.ajax({
type: 'POST',
url: 'plus.php?storeToken',
contentType: 'application/octet-stream; charset=utf-8',
success: function(result) {
// Handle or verify the server response if necessary.
console.log(result);
} else {
$('#results').html('Failed to make a server-side call.');
}
},
processData: false,
data: authResult['code']
});
} else if (authResult['error']) {
console.log('There was an error: ' + authResult['error']);
}
}
JavaScript

Exchange one-time code
$code = $request->getContent();
!
// Exchange the OAuth 2.0 authorization code for user credentials.
$client->authenticate($code);
!
$token = json_decode($client->getAccessToken());
!
// Verify the token
...
!
// Store the token in the session for later use.
$app['session']->set('token', $client->getAccessToken());
$response = 'Successfully connected with token: ' . print_r($token, true);
PHP

Use interactive
posts to engage
your users

Sharing: iOS
Interactive Posts
#import <GooglePlus/GooglePlus.h>
#import <GoogleOpenSource/GoogleOpenSource.h>
...
id <GPPNativeShareBuilder> shareBuilder =
[[GPPShare sharedInstance] nativeShareDialog];
[shareBuilder setURLToShare:[NSURL URLWithString:@“...”]];
!
[shareBuilder setPrefillText:@"Do you want to learn more ...”];
[shareBuilder setContentDeepLinkID:@"talk/googleplusdwx2014"];
[shareBuilder setCallToActionButtonWithLabel:
@"LEARN_MORE"
URL:[NSURL URLWithString:@“...”]
deepLinkID:@“talk/googleplusdwx2014"];
!
[shareBuilder open];
Objective-C

Sharing: iOS
Interactive Posts
- (BOOL)application:(UIApplication *)application
didFinishLaunchingWithOptions:(NSDictionary *)launchOptions
{
[GPPDeepLink setDelegate:self];
[GPPDeepLink readDeepLinkAfterInstall];
!
return YES;
}
Objective-C
- (BOOL)application:(UIApplication *)application  
openURL:(NSURL *)url  
sourceApplication:(NSString *)sourceApplication
annotation:(id)annotation
{
return [GPPURLHandler handleURL:url
sourceApplication:sourceApplication annotation:annotation];
}
Objective-C

Sharing: iOS
Interactive Posts

Sharing: Android
Interactive Posts
PlusShare.Builder builder = new PlusShare.Builder(this);
!
builder.addCallToAction(
"CREATE_ITEM",
Uri.parse(“http://...”),
“/deep/linkid");
!
builder.setContentUrl(Uri.parse(“https://...”));
!
builder.setContentDeepLinkId(“/deep/linkid",
null, null, null);
!
builder.setText("Do you want to learn more ...");
!
startActivityForResult(builder.getIntent(), 0);
Java

Summary
Do not build your own authentication system
Google+ makes authentication easy
Use interactive posts to engage your users
More info at http://developers.google.com/+

Google+ for Mobile Apps on iOS and Android

More Related Content

What's hot

Similar to Google+ for Mobile Apps on iOS and Android

More from Peter Friese

Recently uploaded

Google+ for Mobile Apps on iOS and Android