[iOS] Authorize doesn't return at all when utilizing https redirecUrl & Universal link

[jannuskool]

My identity provider only allows https redirect url and I've configured my project (currently focusing only on iOS) to handle iOS Universal links.

I'm able to do authorize call and receive authorization code through the redirectUrl, but I'm not able to utilise the authorization code as the authorize call never returns and browser is kept in front. Therefore I won't receive nonce value nor code verifier.

Is there something I'm missing how AppAuth should behave or get working with https redirect urls (Universal links)?

Is there a way to close the browser manually and receive nonce & code verifier?

[soumas]

I have a very similar problem. After logging in via an custom IDP (callbackurl "https://xxx.xx/") I can't get back to my app. Instead, the callback URL opens in an external Safari window, which does not hold the necessary session and therefore the process cannot be completed. This issue only exists in iOS. The same process works in Android without any problems.

Registering the callback url as a “deeplink” causes the app to come to the foreground, but the link does not reach the custom tab.

Does anyone have an idea what I could be doing wrong?