ASWebAuthenticationSession cookie

I'm currently using Log in with Apple and am wondering if Chrome's 3p cookie deprecation will impact any of our user flows. I was reading that for OAuth, SPA background token renewal (iframe) will break, and front-channel logout / session management will break for OIDC--has anyone heard this as well, or of any other user flows that may break? Should I be concerned and is Apple working on developing any workarounds for breakages? Have they built anything in the past for Safari & Firefox's movement away from third party cookies (not sure if the impact will be the same for Chrome).

Apple’s documentation is clear for third party cookies, but what’s with technical cookies those needed for the website to function correctly? Eg. Cookies those determine if a popup is needed to show again or not

I managed to logon to https://appstoreconnect.apple.com/ with my ID and password. But, all options on the first page like My Apps, Sales and Trends, etc is not working. The following errors were copied from browser's console: No route found https://appstoreconnect.apple.com/trends Metrics config: No config provided via delegate or fetched via init(), using default/cached config values. Cookie “dqsid” has been rejected because it is already expired. eventQueue overflow, deleting LRU events: size is: 101 which is over max size: 100 Any help is much appreciated. Thanks.

We have been seeing a NSURLError cannot parse error with error code -1017 for 0.01% of all the requests fired from our native app. We double checked the request headers and cookies but found no difference from the API calls that succeeded for the same path. For most of these requests, we found (through our analytics tools) that 99% of the times, there was no response received from the server(response object is nil); trying to understand why would a no response cause a cannot parse error. We do not get much information from error received as to what really went wrong, did the request even reach the server or was killed or modified by the OS? Any help or further detail will be very helpful. Error in detail: Foundation.URLError(_nsError: Error Domain=NSURLErrorDomain Code=-1017 cannot parse response UserInfo={NSUnderlyingError=0x280eddc50 {Error Domain=kCFErrorDomainCFNetwork Code=-1017 (null) UserInfo={_kCFStreamErrorCodeKey=-1, _kCFStreamErrorDomainKey=4}}, NSErrorFailingURLStringKey=https://mydomain.

Hi there, I'm currently initializing a cookie that is supposed to be http only for the security purposes. However, I can't find a way to set the cookie to be http only. Could anyone point me to the right direciton? let cookie = HTTPCookie(properties: [ .domain: aaa.bbbb.ccc, .path: /, .name: token, .value: aaa.bbb.ccc, .version: 1, .secure: true, .expires: NSDate(timeIntervalSinceNow: 12345) ])!

I was passed the review and submit to the apple store. But when I updated the new app version and submit again I got rejected... Here is the message from Apple: Guideline 5.1.2 - Legal - Privacy - Data Use and Sharing We noticed you collect data to track after the user selects Ask App Not to Track on the App Tracking Transparency permission request. Specifically, we noticed your app accesses web content you own and collects cookies for tracking after the user asked you not to track them. Next Steps To resolve this issue, please revise your app so that you do not collect data for tracking purposes if the user does not give permission for tracking. Resources Tracking is linking data collected from your app with third-party data for advertising purposes, or sharing the collected data with a data broker. Learn more about tracking. See Frequently Asked Questions about the new requirements for apps that track users. Please see attached screenshot for details. Which features do I need to remove and revise o

I am working on an app that loads a login page on a WKWebView. My client recently moved to a new MFA provider and this requires the app to allow 3rd party cookies. I have been trying to allow certain 3rd party cookie but no luck. From hours of research it looks like Apple made this impossible... Is there a workaround to set WKWebView cookie accept policy and/or allow 3rd party cookies from specific domains?

I'm trying to figure out why voice over seems to be interrupting an alert role on a webview. I'm on iOS 15.3 and starting an ASWebAuthenticationSession. If an error occurs during login such as, Username and Password are not recognized an error would appear on the html. $templateMessages.getMessage($authnMessageKey) If all goes well VO reads out the error message but, sometimes it gets interrupted with the address bar. When the page is loading the voice over moves to the error then shifts focus back to address bar and reads out the Address ten percent someWebSite.com secure and validated. Any help is appreciated.

An iOS application of ours we develop for a client was recently rejected as it was claimed we violate Guideline 5.1.2. The App Review team's justification was: We noticed your app accesses web content you own where you collect cookies. Cookies may be used to track users, but you do not use App Tracking Transparency to request the user's permission before collecting data used to track. The App Review team included a screenshot of our client's website which they had navigated to via a button found in our client's SSO login flow. Their main website has a cookie policy which seems to be the cause of the rejection. Clearly our client's main website should not be accessible via their SSO login flow but this opens a wider question and concerns from our client. We open the SSO login flow within an ephemeral ASWebAuthenticationSession. The documentation of which states: Set prefersEphemeralWebBrowserSession to true to request that the browser doesn’t share cookies or other