Can't login with user token acquired after OAuth with email / password using ZoomSDKAuthService loginSSO method

peter.kutasi · June 2, 2020, 12:15pm

Description

In our application we support authentication of Zoom user over OAuth. If the user chooses to login with email / password (instead of SSO, Google auth, etc…) on zoom.us during OAuth flow we cannot authenticate the user using the acquired user token with ZoomSDKAuthService - (ZoomSDKError)loginSSO:(NSString*)ssoToken API.

Using the user token we get from /users/{userId}/token endpoint

- (void)onZoomSDKLogin:(ZoomSDKLoginStatus)loginStatus failReason:(NSString*)reason delegate gets called with loginStatus ZoomSDKLoginStatus_Failed and reason nil.

Which version?

v4.6.21666.0427

To Reproduce(If applicable)

During user SSO authentication we request OAuth access token as described here:

Then with the access token we request a user token using usertoken endpoint

We pass the user token to - (ZoomSDKError)loginSSO:(NSString*)ssoToken.
- (void)onZoomSDKLogin:(ZoomSDKLoginStatus)loginStatus failReason:(NSString*)reason; delegate gets called with loginStatus ZoomSDKLoginStatus_Failed and reason nil.

Additional context

The above described flow works if the user chooses to sign in with SSO on zoom.us during OAuth flow.

In case this flow is not supported how could we identify which login method the user picked on zoom.us?

carson.zoom · June 3, 2020, 10:02am

Hi @peter.kutasi,

Thanks for the post. The OAuth instruction you are mentioning is for the Zoom API, not for Zoom SDK. The loginSSO interface is expecting a sso token for zoom that is returned from the IdP that has integration with Zoom: https://support.zoom.us/hc/en-us/sections/200305453-Single-Sign-On.

The token is like the following:

Hope this helps. Thanks!

peter.kutasi · June 24, 2020, 6:11am

Hi @carson.zoom

Thanks for the reply! You are right. We misused the SSO login API, mixed the OAuth and SSO login. The strange thing was that the login was successful with the token we got from the usertoken endpoint after an OAuth authentication, but I see now that this is not the intended usage. At the end we switched to use ZAK token to start meeting in case the user was authenticated with OAuth.

Thanks again!
Peter

carson.zoom · June 26, 2020, 11:33pm

Hey @peter.kutasi,

Thanks for the update and glad to hear that it is working for you now. We will also look into the case you are mentioning. Happy Zooming!

Topic		Replies	Views
How to login mobile sdk using OAuth? Meeting SDK	8	1118	August 21, 2020
How to get the SSO Token for use with loginWithSSOToken? Meeting SDK	11	3186	March 24, 2021
OAUTH with Mobile SDK iOS	2	1091	August 21, 2020
Automatic login does not work when using ZoomSDKAuthService' loginSSO with rememberMe set to YES macOS	4	2035	August 21, 2020
SSO not working for zoom account which is created with google/facebook Meeting SDK	11	5662	March 2, 2021

Can't login with user token acquired after OAuth with email / password using ZoomSDKAuthService loginSSO method

Related topics