I understand that in a Native mobile app the recommended login flow is the Hosted option. However, I’d like to know if it’s possible to still implement an embedded login flow for an Ionic3 Cordova app relatively easily using Auth0js and @auth0-cordova.
While it is possible to do embedded login by using
POST /oauth/token, however we strongly recommend against doing so. There are several limitations associated to that approach, such as not being able to use social etc logins. Here is a blog that highlights concerns with RO Grant https://www.scottbrady91.com/OAuth/Why-the-Resource-Owner-Password-Credentials-Grant-Type-is-not-Authentication-nor-Suitable-for-Modern-Applications
Furthermore, the universal login significantly reduces the integration part on your app end, and offloads the auth problem to Auth0 and the OS vendor.