Auth0 is an authentication broker that supports social identity providers as well as enterprise identity providers such as Active Directory, LDAP, Google Apps and Salesforce.

• Integrates your Android app with Auth0.
• Provides a beautiful native UI to log your users in.
• Provides support for Social Providers (Facebook, Twitter, etc.), Enterprise Providers (AD, LDAP, etc.) and Username & Password.
• Passwordless authentication using SMS.

Android API level 14+ is required in order to use Lock's UI. If you'll create your own API and just call Auth0 API via the com.auth0.android:core:1.9.+, the minimum required API level is 9.

##Install

Lock is available both in Maven Central and JCenter. To start using Lock add these lines to your build.gradle dependencies file:

compile 'com.auth0.android:lock:1.9.+'

Once it's installed, you'll need to configure LockActivity in yourAndroidManifest.xml, inside the application tag:

<!--Auth0 Lock-->
<activity
  android:name="com.auth0.lock.LockActivity"
  android:theme="@style/Lock.Theme"
  android:screenOrientation="portrait"
  android:launchMode="singleTask">
  <intent-filter>
    <action android:name="android.intent.action.VIEW"/>
    <category android:name="android.intent.category.DEFAULT"/>
    <category android:name="android.intent.category.BROWSABLE"/>
    <data android:scheme="a0INSERT_YOUR_APP_CLIENT_ID" android:host="@string/auth0_domain"/>
  </intent-filter>
</activity>
<meta-data android:name="com.auth0.lock.client-id" android:value="@string/auth0_client_id"/>
<meta-data android:name="com.auth0.lock.domain-url" android:value="@string/auth0_domain"/>
<!--Auth0 Lock End-->

The value @string/auth0_client_id is your application's clientID and @string/auth0_domain is your tenant's domain in Auth0, both values can be found in your app's settings. The final value of android:scheme must be in lowercase

Also, you'll need to add Internet permission to your application:

<uses-permission android:name="android.permission.INTERNET"/>

Finally, Make your Application class (The one that extends from android.app.Application) implement the interface com.auth0.lock.LockProvider and add the following code:

public class MyApplication extends Application implements LockProvider {

  private Lock lock;

  public void onCreate() {
    super.onCreate();
    lock = new Lock.Builder()
      .loadFromApplication(this)
      /** Other configuration goes here */
      .closable(true)
      .build();
  }

  @Override
  public Lock getLock() {
    return lock;
  }
}

You can check here for more configuration options

LockActivity will handle Email/Password, Enterprise & Social authentication based on your Application's connections enabled in your Auth0's Dashboard.

When a user authenticates successfully, LockActivity will send an Action using LocalBroadcaster manager and then finish itself (by calling finish()). The activity that is interested in receiving this Action (In this case the one that will show Lock) needs to register a listener in the LocalBroadcastManager:

// This activity will show Lock
public class HomeActivity extends Activity {

  private LocalBroadcastManager broadcastManager;

  private BroadcastReceiver authenticationReceiver = new BroadcastReceiver() {
    @Override
    public void onReceive(Context context, Intent intent) {
      UserProfile profile = intent.getParcelableExtra("profile");
      Token token = intent.getParcelableExtra("token");
      Log.i(TAG, "User " + profile.getName() + " logged in");
    }
  };

  @Override
  protected void onCreate(Bundle savedInstanceState) {
    super.onCreate(savedInstanceState);
    //Customize your activity

    broadcastManager = LocalBroadcastManager.getInstance(this);
    broadcastManager.registerReceiver(authenticationReceiver, new IntentFilter(Lock.AUTHENTICATION_ACTION));
  }

  @Override
  protected void onDestroy() {
    super.onDestroy();
    broadcastManager.unregisterReceiver(authenticationReceiver);
  }
}

Then just start LockActivity

Intent lockIntent = new Intent(this, LockActivity.class);
startActivity(lockIntent);

And you'll see our native login screen

By default all social authentication will be done using an external browser, if you want native integration please check this wiki page.

LockSMSActivity authenticates users by sending them an SMS (Similar to how WhatsApp authenticates you). In order to be able to authenticate the user, your application must have the SMS connection enabled and configured in your dashboard.

LockSMSActivity is part of the library lock-sms and you can add it with this line in your build.gradle:

compile 'com.auth0.android:lock-sms:1.9.+'

Then in your AndroidManifest.xml register the following activities:

    <!--Auth0 Lock SMS-->
    <activity
      android:name="com.auth0.lock.sms.LockSMSActivity"
      android:theme="@style/Lock.Theme"
      android:label="@string/app_name"
      android:screenOrientation="portrait"
      android:launchMode="singleTask"/>
    <activity android:name="com.auth0.lock.sms.CountryCodeActivity" android:theme="@style/Lock.Theme"/>
    <!--Auth0 Lock SMS End-->

When a user authenticates successfully, LockActivity will send an Action using LocalBroadcaster manager and then finish itself (by calling finish()). The activity that is interested in receiving this Action (In this case the one that will show Lock) needs to register a listener in the LocalBroadcastManager:

// This activity will show Lock
public class HomeActivity extends Activity {
  private LocalBroadcastManager broadcastManager;

  private BroadcastReceiver authenticationReceiver = new BroadcastReceiver() {
    @Override
    public void onReceive(Context context, Intent intent) {
      UserProfile profile = intent.getParcelableExtra(Lock.AUTHENTICATION_ACTION_PROFILE_PARAMETER);
      Token token = intent.getParcelableExtra(Lock.AUTHENTICATION_ACTION_TOKEN_PARAMETER);
      Log.i(TAG, "User " + profile.getName() + " logged in");
    }
  };

  @Override
  protected void onCreate(Bundle savedInstanceState) {
    super.onCreate(savedInstanceState);
    //Customize your activity

    broadcastManager = LocalBroadcastManager.getInstance(this);
    broadcastManager.registerReceiver(authenticationReceiver, new IntentFilter(Lock.AUTHENTICATION_ACTION));
  }

  @Override
  protected void onDestroy() {
    super.onDestroy();
    broadcastManager.unregisterReceiver(authenticationReceiver);
  }
}

Then just start LockSMSActivity

startActivity(new Intent(this, LockSMSActivity.class));

And you'll see SMS login screen

##Proguard In the proguard directory you can find the Proguard configuration for Lock and its dependencies. By default you should at least use the following files:

• proguard-android-async-http.pro
• proguard-jackson-2.pro
• proguard-square-otto.pro
• proguard-lock.pro

and if you use Facebook or Google+ native integration, you'll need proguard-facebook.pro and proguard-google-play-services.pro respectively.

You specify several files in you application's build.gradle like this:

buildTypes {
  release {
    minifyEnabled true
    proguardFile '../proguard/proguard-facebook.pro' //facebook native auth
    proguardFile '../proguard/proguard-google-play-services.pro' //G+ native auth
    proguardFile '../proguard/proguard-android-async-http.pro' //Auth0 core
    proguardFile '../proguard/proguard-jackson-2.pro' //Auth0 core
    proguardFile '../proguard/proguard-square-otto.pro' //Lock
    proguardFile '../proguard/proguard-lock.pro' //Lock
    //Add your app's specific proguard rules
  }  
}

##API

###Lock

####Constants

public static final String AUTHENTICATION_ACTION;

Action sent in LocalBroadcastManager when a user authenticates. It will include an instance of UserProfile and Token.

public static final String AUTHENTICATION_ACTION_PROFILE_PARAMETER;

Name of the parameter that will include user's profile

public static final String AUTHENTICATION_ACTION_TOKEN_PARAMETER;

Name of the parameter that will include user's token information

public static final String CANCEL_ACTION;

Action sent when the user navigates back closing LockActivity or LockSMSActivity

public static final String CANCEL_ACTION;

Action sent when the user change its password

####Properties

public boolean shouldUseWebView();
public void setUseWebView(boolean useWebView);

Forces Lock to use an embedded android.webkit.WebView and by default is false.

public boolean shouldLoginAfterSignUp();
public boolean setLoginAfterSignUp(boolean loginAfterSignUp);

Lock will login the user after a successful sign up. By default is true

public boolean isClosable();
public boolean setClosable(boolean closable);

Allows Lock activities to be closed by pressing back button. Default is false

public boolean shouldUseEmail();
public void setUseEmail(boolean useEmail);

Lock will ask for the user's email instead of a username. By default is true.

public Map<String, Object> getAuthenticationParameters();
public void setAuthenticationParameters(Map<String, Object> authenticationParameters);

Map with parameters that will be sent on every authentication request with Auth0 API.

public List<String> getConnections();
public void setConnections(List<String> connections);

Tells Lock to use the connections whose name is included in the list. By default the list is null or empty which means that all enabled connections in your application will be used.

public String getDefaultDatabaseConnection();
public void setDefaultDatabaseConnection(String defaultDatabaseConnection);

Lock will use the Database Connection whose name matches the one provided. By default its null, which means it will pick the first of the list.

public void setFullscreen(boolean fullscreen);
public boolean isFullscreen();

If Lock's activities should be displayed in Fullscreen. Default is false

####Methods

public void setProvider(String serviceName, IdentityProvider provider);

Change the default identity provider handler for Social and Enterprise connections. By default all social/enterprise authentication are done using Web flow with a Browser.

public void resetAllProviders();

Removes all session information the Identity Provider handlers might have.

###LockBuilder A simple builder to help you create and configure Lock in your application.

####Constants

public static final String CLIENT_ID_KEY = "com.auth0.lock.client-id";

Key value used by Lock to search in your application's meta-data for the ClientID.

public static final String TENANT_KEY = "com.auth0.lock.tenant";

Key value used by Lock to search in your application's meta-data for tenant name.

public static final String DOMAIN_URL_KEY = "com.auth0.lock.domain-url";

Key value used by Lock to search in your application's meta-data for domain Url.

public static final String CONFIGURATION_URL_KEY = "com.auth0.lock.configuration-url";

Key value used by Lock to search in your application's meta-data for configuration Url.

####Methods

public LockBuilder clientId(String clientId);

Set the clientId of your application in Auth0. This value is mandatory.

public LockBuilder tenant(String tenant);

Set the tenant name of your application. This value is optional if you supply a domain url.

public LockBuilder domainUrl(String domain);

Set the domain Url for Auth0's API. This value is optional if you provide a tenant name, it will default to Auth0 cloud API https://tenant_name.auth0.com.

public LockBuilder configurationUrl(String configuration);

Set the Url where Lock fetches the App configuration. By default it asks Auth0 for this info.

public LockBuilder useWebView(boolean useWebView);

Make Lock use an embedded WebView for Social+Enterprise authentications.

public LockBuilder closable(boolean closable);

Allow the user to close Lock's activity by pressing back button.

public LockBuilder loginAfterSignUp(boolean loginAfterSignUp);

After a successful sign up of a user, sign him/her in too.

public LockBuilder authenticationParameters(Map<String, Object> parameters);

Extra parameters sent to Auth0 Auth API during authentication. By default it has scope defined as openid offline_access and a device name stored in device parameter key. For more information check out our Wiki

public LockBuilder useEmail(boolean useEmail);

Lock will ask for an email for authentication, otherwise it will ask for a username. By default is true.

public LockBuilder useConnections(String ...connectionNames);

Make Lock pick these connections for authentication from all the enabled connections in your app.

public LockBuilder defaultDatabaseConnection(String name);

Make Lock use the Database Connection whose name matches the one provided.

public LockBuilder loadFromApplication(Application application);

Load ClientID, Tenant name, Domain and configuration URLs from the Android app's metadata (if available). These are the values that can be defined and it's keys:

• com.auth0.lock.client-id: Application's clientId in Auth0.
• com.auth0.lock.tenant: Application's owner tenant name. (Optional if you supply Domain and Configuration URLs)
• com.auth0.lock.domain-url: URL where the Auth0 API is available. (Optional if you supply ClientID/Tenant and you use Auth0 in the cloud)
• com.auth0.lock.configuration-url: URL where Auth0 apps information is available. (Optional if you supply ClientID/Tenant and you use Auth0 in the cloud)

public LockBuilder fullscreen(boolean fullscreen);

Make Lock's activities fullscreen. Default is false

public Lock build();

Creates a new instance of Lock and configure it with the values passed to the builder.

If you have found a bug or if you have a feature request, please report them at this repository issues section. Please do not report security vulnerabilities on the public GitHub issue tracker. The Responsible Disclosure Program details the procedure for disclosing security issues.

Auth0 helps you to:

• Add authentication with multiple authentication sources, either social like Google, Facebook, Microsoft Account, LinkedIn, GitHub, Twitter, Box, Salesforce, amont others, or enterprise identity systems like Windows Azure AD, Google Apps, Active Directory, ADFS or any SAML Identity Provider.
• Add authentication through more traditional username/password databases.
• Add support for linking different user accounts with the same user.
• Support for generating signed Json Web Tokens to call your APIs and flow the user identity securely.
• Analytics of how, when and where users are logging in.
• Pull data from other sources and add it to the user profile, through JavaScript rules.

1. Go to Auth0 and click Sign Up.
2. Use Google, GitHub or Microsoft Account to login.

Auth0

Lock is available under the MIT license. See the LICENSE file for more info.