Add Android deep-link OAuth bridge for WebView auth

Fork: 0

root / navi-1

Browse code Add Android deep-link OAuth bridge for WebView auth Problem: Android WebView opens OAuth in external browser (Chrome). After successful login, cookie stays in Chrome and WebView remains unauthenticated because cookies are not shared between apps. Solution: bridge page flow that avoids cookies entirely for mobile. Backend: - /auth/login accepts ?platform=android and ?return_to params - /auth/callback detects android via state metadata, skips cookie, redirects to /auth/mobile-done?sid=<session_id> - /auth/mobile-done renders HTML that deep-links to navi://auth/callback Webclient: - login() detects NaviAndroid UA and adds ?platform=android Android: - MainActivity: handle incoming navi:// intent in onCreate and onNewIntent, set cookie via CookieManager, reload WebView - AndroidManifest: add intent-filter for navi://auth/callback and singleTask launchMode Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com> feature/navi-code master vmkdemo
1 parent 596cd4e commit a27ce323b2c4fd8e184931d5f4ac7464fddc8cd2 Eugene Sukhodolskiy authored on 9 May

Browse code

Problem: Android WebView opens OAuth in external browser (Chrome).
After successful login, cookie stays in Chrome and WebView remains
unauthenticated because cookies are not shared between apps.

Solution: bridge page flow that avoids cookies entirely for mobile.

Backend:
- /auth/login accepts ?platform=android and ?return_to params
- /auth/callback detects android via state metadata, skips cookie,
  redirects to /auth/mobile-done?sid=<session_id>
- /auth/mobile-done renders HTML that deep-links to navi://auth/callback

Webclient:
- login() detects NaviAndroid UA and adds ?platform=android

Android:
- MainActivity: handle incoming navi:// intent in onCreate and onNewIntent,
  set cookie via CookieManager, reload WebView
- AndroidManifest: add intent-filter for navi://auth/callback and
  singleTask launchMode

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

feature/navi-code master vmkdemo

1 parent 596cd4e commit a27ce323b2c4fd8e184931d5f4ac7464fddc8cd2

Eugene Sukhodolskiy authored on 9 May

Patch

Unified Split

Showing 7 changed files

Ignore Space Show notes View android-client/app/src/main/AndroidManifest.xml

Ignore Space Show notes View android-client/app/src/main/java/com/navi/client/MainActivity.kt

Ignore Space Show notes View navi/api/routes/auth.py

Ignore Space Show notes View webclient/dist/assets/index-Bzu2xBc7.js 0 → 100644
Not supported

Show notes View webclient/dist/assets/index-DUUJTs7F.js 100644 → 0
Not supported

Ignore Space Show notes View webclient/dist/index.html

Ignore Space Show notes View webclient/src/stores/auth.js

Show line notes below