Hi, I'm preparing for certification and struggling with implementing on-device-authentication.
But I wonder if I have to exactly follow the flow shown as follows:
To be more specific, is it possible to store customers email, password directly to Roku cloud and device registry instead of storing access token?
It's still adhere to the criteria "Channels must complete account sign-ups and sign-ins on the device using On-device authentication, without visiting an external webpage"....
The customer's personal information may not be stored in the Roku Cloud or in the device registry. You can store an access token, oAuth token, or some other authentication artifact.