我正在为拥有现有安全解决方案的大型企业开发 iPad 应用程序,这些解决方案为整个公司的无数网络和非网络应用程序提供身份验证/授权等服务。员工使用公司凭据(用户 ID/密码)对这些安全平台进行身份验证。如今,这些员工正在 BYOD 为他们的 iPad 工作,我想设计一种方法让他们使用相同的公司凭据来解锁设备,而不是使用完全独立的设备密码。
所以我的问题是:有没有办法将自定义“身份验证提供程序”插入 iOS 解锁屏幕,而不是依赖 iOS 验证设备密码?我知道密码也用于派生设备上的加密密钥,但我们可以将用户的公司密码用于相同目的。
我正在寻找的是类似于 ASP.NET 的身份验证提供模型的解决方案。我怀疑这目前是否存在,因为所有 iOS 开发都是以应用程序为中心的(MDM 除外),但也许有人知道一个有效的选项。
Are you saying you want the authentication to occur every time the screen unlocks via a swipe regardless of which app you will be returning to? If so:
I am 99% sure this is not possible yet. A member of my family works for CIRM (California Institute for Stem Cell Research) and even though they switched to iPhones for work, they still use the 4 digit passcode setup as applied in settings for authentication to gain access to the entirety of the phone.
Everything related to the underlying operating system is off limits because of Apple for the most part, so I'd imagine this is mostly not possible.
Maybe you could do some tedious hacking after jail-breaking the phones but that would violate a lot of laws which is especially bad in a corporate setting, so don't do that.
What is possible is having an app you create requiring re-authentication each time someone begins using it (Whenever it re-enters the foreground). It seems like you already knew that though and that wasn't really your question.
Hope this helps. Good luck.