Comment by @kevinwo • Hey

Thought about this too. Even with injecting credentials into a modal web view, Apple would definitely flag and reject a build submission once they found it