We want to implement SSO (single Sign-On) on a smartphone between a Cordova application and a web-based application.
The desired usage scenario would be the following:
(1) Our user Joe uses the phone browser (say chrome, or safari) on his smartphone to access the WebApp.
(2) Joe authenticates to the WebApp (Joe provides his credentials and a SAML 2.0 token is issued by our ADFS).
(3) Now Joe launches the CordovaApp. We would like to achieve Single Sign-On: Joe is already authenticated for the WebApp, so he would be transparently authenticated for the CordovaApp.
We understand that we can implement SAML authentication with the Cordova/Kapsel logon plug-in.
And as far as we understand it, the authenticated session in the scenario above lives in the phone browser and cannot be seen within the CordovaApp webview. So the user would have to re-enter his credential in the Cordova App (no SSO).
How can we implement Single Sign-On in the Cordova App to support the scenario above?
Thanks in advance for your help,