Hi guys, I have been using a services id for my apps and websites to use Sign in with Apple feature over 3 months. All of a sudden the website urls and return urls I newly add to the services id don't work. I am getting "invalid_request Invalid web redirect url." errrors. I have checked the urls carefully, (https), I also added many new ones but none of them worked. In order to test it I also removed some of the current return urls from my websites to see if it will stop working but no, the ones I removed still work which kind of confirms my theory that it does not update the list, it is bugged. Quite weirdly, the new native apps I submitted to the store also does not work, it gives the error "Sign-up Not Completed" Does any one have any idea? Such a weird problem all of a sudden

We have changed return URLs for one Service ID, but the change is not propagated. The old return URL still works and we get "Invalid web redirect URL". We even tried deleting Service ID with old return URLs and created new Service ID with new redirect URLs. But the only one that works is the one that we deleted.

I double checked and my redirect url is the same in service id. It looks like the domains I add has no effect. I have another service id that works with apple sign in. I deleted the return url on it and it still works. Is there a delay or something. Can someone help me with this please? I am about to lose my mind

I'm facing an issue with some master sandbox testing cards, the DPAN value displayed on the “Wallet & Apple Pay Setting” different from the value we got after decrypting the payment token. check the below sample values: FPAN: 5204 2477 5000 1497 DPAN on device setting: **********5057 Decrypted DPAN: 520424****5996 The DPAN and the decrypted DPAN should be the same.

Hello, I need to use a apple sign in in ios application, i get my authorization code from hybryde apllication : let options: SignInWithAppleOptions = { clientId: ConstConfig.APPLE_CLIENT_ID, redirectURI: ConstConfig.APPLE_REDIRECT_URI, scopes: ConstConfig.APPLE_SCOPES, state: ConstConfig.APPLE_STATE, nonce: ConstConfig.APPLE_NONCE }; SignInWithApple.authorize(options) .then((result: SignInWithAppleResponse) => { this.authenticate.appleAuthorizationCode = result.response.authorizationCode; this.authenticate.appleUser = result.response.user; this.authenticate.appleIdentityToken = result.response.identityToken; i send this 3 value to my backend JAVA to validate the accessToken and get the refrsh token, validate java Method : logger.info("Apple authorization validation"); // get the subject received from the client String clientSubject = getSubject(identityToken); // verifying the code by the apple server String token = getToken(); logger.debug("Authorize with token:" + token); Map<String, String> params = new HashMap<>(); params.put("client_id", APPLE_CLIENT_ID); params.put("client_secret", token); params.put("code", authorisationCode); params.put("grant_type", "authorization_code"); params.put("redirect_uri", ""); if (redirectURI != null) { } String response = post(APPLE_AUTH_URL, params); logger.info("Apple authorization response:" + response); AppleTokenResponse tokenResponse = objectMapper.readValue(response, AppleTokenResponse.class); if (tokenResponse.getError() != null && tokenResponse.getError().length() > 0) { logger.warn("Error during verification of the code. Reason:" + tokenResponse.getError()); return null; } String serverSubject = getSubject(tokenResponse.getId_token()); if (!serverSubject.equals(clientSubject)) { logger.warn("Validation failed, subject does not match!"); return null; } return getClaims(tokenResponse.getId_token()); the JWT TOken : return Jwts.builder() .setHeaderParam(JwsHeader.KEY_ID, APPLE_KEY_ID) .setHeaderParam(JwsHeader.ALGORITHM,"ES256") .setIssuer(APPLE_TEAM_ID) .setAudience(APPLE_APPLE_ID_URL) .setSubject(APPLE_CLIENT_ID) .setExpiration(new Date(System.currentTimeMillis() + (1000 * 60 * 5))) .setIssuedAt(new Date(System.currentTimeMillis())) .signWith(SignatureAlgorithm.ES256, pKey) .compact(); how i get my private key : File file = new File(APPLE_CERTIFICATE_PATH); try { PEMParser pemParser = new PEMParser(new FileReader(file)); JcaPEMKeyConverter converter = new JcaPEMKeyConverter(); PrivateKeyInfo object = (PrivateKeyInfo) pemParser.readObject(); APPLE_PRIVATE_KEY = converter.getPrivateKey(object); logger.info("load apple private keys Ok."); } catch (Exception ex) { logger.error("error on generate apple sign in private Key : ", ex); } thr response still return : {"error":"invalid_grant","error_description":"client_id mismatch. The code was not issued to bundleID"}, i don't know the reason. i read that i nedd to check in testFlit, ido but i still get the same error, i also put the same redirect_url in front and back (for me that not needed because i dont use u web sign in ) but i still get the same error. for my bundle id i use the APP Identifier not the service Identifier in front and back. its correct ? thank for your help.

I have the below code block to call the token endpoint. The endpoint succeeds from Postman with JSON response but from my web application, it fails with CORS error. What could be the reason for this behavior? const axios = require('axios'); const qs = require('qs'); let data = qs.stringify({ 'grant_type': 'authorization_code', 'code': 'xxxxxxyyyyybbb, 'redirect_uri': 'https:myApp/login', 'client_id': 'com.myclient_id', 'client_secret': 'myworkingsecret' }); let config = { method: 'post', maxBodyLength: Infinity, url: 'https://appleid.apple.com/auth/token', headers: { 'Content-Type': 'application/x-www-form-urlencoded' }, data : data }; axios.request(config) .then((response) => { console.log(JSON.stringify(response.data)); }) .catch((error) => { console.log(error); });

We are implementing a web app with Angular as frontend and java springboot as backend. while trying to use signin with Appleid in our application login page, we are getting Invalid_Client. please find the attached log and image of error. log.txt

This appleid.cdn-apple.com page can’t be foundNo web page was found for the web address: https://appleid.cdn-apple.com/appleid/button/logo?size=44&color=black&border=false&border_radius=50&scale=2 HTTP ERROR 404

Null Display Name Issue with AppleAuth Provider on Firebase using react native Dear Apple App Review Team, I have been diligently working on my app, which heavily relies on Firebase for authentication purposes. Specifically, I am utilizing the AppleAuth provider to offer seamless authentication options to my users. However, during the review process, it came to my attention that the display name from the AppleAuth provider is being returned as null. This issue is concerning, as it directly affects the user experience and functionality of my app. It prevents users from being able to see their display name correctly, which can lead to confusion and frustration. Moreover, it undermines the trust and reliability of the app, which I have worked hard to establish. I have thoroughly reviewed my code and integration with Firebase, and I can confirm that I have followed all the necessary guidelines and recommendations provided by Apple and Firebase documentation. The null display name issue appears to be an unexpected and unintended consequence. To rectify this problem, I kindly request the assistance and guidance of the Apple App Review Team. I would greatly appreciate it if you could provide me with specific instructions or steps to resolve the null display name issue with the AppleAuth provider on Firebase. I understand the importance of maintaining high-quality standards on the Apple App Store, and I am fully committed to resolving this issue promptly. I value the collaborative relationship between developers and the Apple App Review Team and believe that by working together, we can ensure the best possible experience for our users. Thank you very much for your attention to this matter. I look forward to your prompt response and guidance on how to handle this issue effectively. Please feel free to contact me if you require any additional information or have any further

I follow the below link to set up an apple login. https://developer.apple.com/documentation/sign_in_with_apple/sign_in_with_apple_js/configuring_your_webpage_for_sign_in_with_apple I configured - AppleID.auth.init({ clientId: 'tech.onetable.onetableadmin', scope: 'name email', redirectURI: 'https://local.test:5000/api/apple_auth', state: 'lilylsunisabigsb', usePopup: true, }) The process stuck at the page below, both "cancel" and "continue" buttons are not reponsive, there is a error saying " Your request could not be completed because of an error. Please try again later.". I checked the console of this popup window, it shows an error saying "POST https://appleid.apple.com/appleauth/auth/oauth/authorize 403"

I'm integrating the social login using apple sdk on my site Actually our login flow require the apple id popup solution to prevent user get out site, actually Im using this configurations on init: Init code: window.AppleID.auth.init({ clientId : 'example.client.id', scope : 'name email', redirectURI : 'https://mtest.thecompleteuniversityguide.co.uk', state: "origin:web", usePopup : true }) APP URL : https://mtest.thecompleteuniversityguide.co.uk/log-in Login code: async function appleSignIn() { try { const result = await window.AppleID.auth.signIn(); console.log("result: ", result); // Handle successful response. //applesocialsignsucess(data); } catch ( error ) { // Handle error. console.log("Error", error); } } document.addEventListener('AppleIDSignInOnSuccess', (event) => { // Handle successful response. console.log("Successfully Login "+event.detail.data); }); document.addEventListener('AppleIDSignInOnFailure', (event) => { // Handle error. console.log("Error "+event.detail.data); alert("Error "+event); }); THE PROBLEM IS: When the popup is opened and the apple id and password are correctly entered, the promise is not returned. When the cancel button is pressed, the popup does not close and no error is generated. The error is only called when the popup is closed using the navigation button. I require assistance; what are the issues with implementation?

Hello community! To begin I want to say that I am a junior developer. We are about to publish our app, after several tests in TestFlight and we received that our app was rejected for the following reason: Guideline 4.0 - Design Your app offers Sign in with Apple as a login option but does not follow the design and user experience requirements for Sign in with Apple. Specifically: - Your app requires users to provide their name and/or phone number after using Sign in with Apple. This information is already provided by the Authentication Services framework. These requirements provide the consistent experience users expect when using Sign In with Apple to authenticate or log in to an account. Next Steps Please review the Sign in with Apple experience in your app to address the issues we identified above. Resources To learn more about App Store design requirements, see App Store Review Guideline 4 - Design. For an overview of design and formatting recommendations for Sign in with Apple, review the Human Interface Guidelines. The application, after logging in with apple, gives the user the option to edit the name and phone number, and we save that information in our personalized server. And I am using the Ionic-Cordova framework and for Google Plus authentication --> cordova-plugin-googleplus. I was reading the guides and the resources that they offer me, but I did not reach a good resolution. Any ideas for this problem? Thank you so much!

We're getting stuck on the oath/authorize endpoint. After logging in w/ Apple the continue button successfully authorizes but doesn't redirect. Would love feedback from anyone who has implemented it! Thanks!

Hi, I'm developing the "sign in with apple" button. When I get the response from apple I can check the 'state' variable but what's the best way to know that the response actually comes from apple and not something else?

One of our QA testers reported that when attempting to sign in with apple on our site, the prompt would pop up, he would sign in, it would spin, say success... and then pop up again, after that it would work properly. No one has been able to reproduce so far, so maybe it's a specific thing, but in order to provide accurate responses to our users we would like to know if there's a way to fix or avoid this The solution is entirely copied from this documentation

Hello Apple Developers, I'm currently working on integrating the "Sign up with Apple" button into my website, but I've encountered a problem. I am unable to test the feature locally on my machine. I have followed the instructions provided in the Apple Developer Documentation, which involves setting up the necessary configuration in the Apple Developer Portal and adding the required code to my website. However, I am unable to test this feature on my local machine, which makes it challenging for me to develop and troubleshoot any issues. I understand that Apple requires a registered domain to use the "Sign up with Apple" feature, but I would like to know if there is any way to test it locally without a registered domain. Is there any workaround that I can use to test the feature without having to deploy it to a live server? Your help in this matter would be greatly appreciated. Thank you.

When using Sign in with Apple on Chrome our Apple accounts are becoming locked. After unlocking we are unable to sign in to our website using Sign in with Apple - possibly due to the 24 hour waiting period. Safari works fine. Prior to today this worked perfectly. Something changed today either with Apple, Chrome or Firebase. Any ideas on how to resolve this issue would be great 🙌🏾

Hi, I am trying to implement Sign In With Apple on a react app, using the react-apple-signin-auth package, with Firebase Authentication. My redirect URI is set to the url provided by firebase auth and client ID to the service ID created for the web app on Apple Developer. I am able to initiate the popup and input apple ID and password. However, when asked for confirmation to sign in, I get the following error: "Your request could not be completed because of an error. Please try again later" I am unsure of what is causing this error and hence unable to fix it. What should I do now?

We have an unity application using apple Sign in, and we want to build an additional web app that can also keep track of the progress of users. After people sign in using the unity app we keep track of the ID apple returns for future reference and searches. To build the webapp we created a service ID and coupled to our only appId, we then created a secret and finally we followed this guide for the setup The id_token the app outputs shows a sub that is different than the one returned in unity, even though this document here says it should be an unique identifier for our user in our app What could be going wrong? Or in case this question is better, how to properly identify an user across a mobile and web environment?

Hi, i'm trying to integrate the Apple Sign in function on my website. I understood how to make the front-end part using the Sign in with Apple js library and how to handle the auth response. Now the problem is: what i need to do on the server side to complete the authentication and to get the user information (name surname and email)?, the documentation isn't clear to me. Can you please explain me the server-side flow? Do you have any examples in Java? Thanks. Giacomo