I've been experiencing something weird. I've created a site with a "Sign In With Apple JS" button (siwa js) that is working and a another testing (site) that is working as well (2 sites working). I've tried to do the same (again) with different url, different app id, different service... (third case in parallel). The third time, I'm receiving and invalid_client error (I can't find why). But this wasn't the most weird of all. This it was: I've removed the settings of the second site (testing site) from the apple developer site and it continues working at least for 18 hours (until now). How on earth siwa can work after removing the app id, the service id, the key and the domains form the developer site? I've created a case with apple because it seems siwa is cached and no new deffinition is working (for me).

I was able to add apple login in my iOS App. Unfortunately, the token expires every 24 hours. I tried to follow the documentation: https://developer.apple.com/documentation/sign_in_with_apple/generate_and_validate_tokens but I get "invalid_client" error everytime.. Is there a real use case available somewhere to know which field is which? Thanks

Hi, I am trying to integrate with Apple Sign-In on my company's website and before I deploy any code out on the server. I want to first do a quick PoC on my Mac locally, and see how far I can get through this. Below is a very simple setup I have within my localhost index.html <!DOCTYPE HTML> <html> <head> <title>Apple Sign-In</title> <meta http-equiv="Content-Type" content="application/x-www-form-urlencoded" /> </head> <style> .signin-button { width: 400px; height: 100px; } </style> <body> <script type="text/javascript" src="//appleid.cdn-apple.com/appleauth/static/jsapi/appleid/1/enUS/appleid.auth.js"></script> <div id="appleid-signin" data-color="black" data-border="true" data-type="sign in" class="signin-button"></div> <script type="text/javascript"> const randomhexcolorcode = () => { let n = (Math.random() * 0xfffff * 1000000).toString(16); return n.slice(0, 6); }; AppleID.auth.init({ clientId : '7xyzabc123.org.mydomain.mysubdomain.client', scope : 'name email', redirectURI : '//example-app.com/redirect', state : randomhexcolorcode().toString(), responseType: 'code', responseForm: 'formpost', nonce : randomhexcolorcode().toString(), usePopup : false }); </script> </body> </html> However, On page load, after I click on the Sign-In CTA, which is the very first step for Apple Authorization and to get the AuthCode. I always get redirected to the URL below with the InvalidClient error. https://appleid.apple.com/auth/authorize?client_id=7xyzabc123.org.mydomain.mysubdomain.client'&redirect_uri=https%3A%2F%2Fexample-app.com%2Fredirect&response_type=code%20id_token&state=da9a9e&scope=name%20email&nonce=8bab5e&response_mode=form_post&frame_id=3af8e9dc-52fa-47c3-8659-78c33ac513b4&m=12&v=1.5.3 Is this because of my testing locally and Does Apple require the referrer URL to be from a proper domain and not localhost? Do I need to deploy this on a Dev or Test server to test this properly? Which would be so much time-consuming. I have spent quite some hours now trying to hash this out. So any comments or suggestions will be very helpful. Thank You, Kunal

In many guides (especially my use case at least) from some time ago, I see that when setting up "Sign In With Apple", you must verify the domain by downloading a txt file and hosting it in this path https://example.com/.well-known/apple-developer-domain-association.txt. The question is that I have just configured "Sign In With Apple" and not only I have not found anywhere the button to download this file (neither where theoretically it should be in the Services ID settings nor anywhere), but apparently everything works fine without having done it. This has been a recent change, is it no longer necessary to verify domains in this way? We are going to take this into production so I want to make sure everything is OK.

Hello: I'm developing a windows Destop App. And want to support sign in with Apple to get the user's email address without a webserver support. Is it possible?

i developed sign in with apple with js It doesn't work only in version 14.5's webview. It works fine in mobile safari. All other versions of the webview work fine. It doesn't work only in 14.5's webview. Has anyone ever encountered such an error?? The log shows [SOAuthorizationCore] canceling now-no SPI authorization delegate.

ios version above 14.5.1 apple sign in with js not work in webview in Xcode this sentence [SOAuthorizationCore] canceling now-no SPI authorization delegate. show and not work how can i fix it. i want solve this

Diagnose errors received by the Sign in with Apple client, or its server infrastructure by identifying the underlying causes of common error codes and explore their potential solutions. View Technote TN3107 &gt;

Hey, I have the problem that I don't get Login with Apple. I used the following instructions: https://developer.apple.com/documentation/sign_in_with_apple/sign_in_with_apple_js Unfortunately I cannot get the desired result, the error message "Registration failed" always appears. Maybe someone can help me or recommend a video etc. Best regards Max

Trying to troubleshoot a "Nonce Mismatch" error with Apple SIgn In. Not sure if it's an Apple issue, OmniAuth, or perhaps code. Here's some context: Framework: Rails (v6.1) / Web App Using the Ruby Gems - [omniauth-apple ], Devise (https://github.com/nhosoya/omniauth-apple) Everything is "wired" up, and authentication seems to be working. Safari prompts me for my fingerprint, I authenticate, and it redirects back to the web app logged in. Authentication works in all major browsers via a more manual approach. However, I'm receiving this error: Nonce mismatch From my logs: ERROR -- omniauth: (apple) Authentication failure! nonce_mismatch: OmniAuth::Strategies::OAuth2::CallbackError, nonce_mismatch | nonce mismatch One thing I noticed, changing this Rails setting from :lax to :none seems to suppress the error. But the trade-off is Chrome fails. Hmmm... config.action_dispatch.cookies_same_site_protection = :lax' Any idea what this means and some guidance would be welcome.

I am trying to follow the documentation to verify a user in my backend. My App follows the schema that appears in the diagram at the top of the page. I am using npm and: next in frontend (App) express in backend (API Server) Once I receive the token in the API Server from the App, I check it's validity following the steps under the heading Verify the identity token without problem. I have trouble understanding if I am doing enough when I try to follow the stpes in Obtain a refresh token. In this step, I am sent to the page in the documentation to Generate and validate tokens. However, that part of the documentation refers to client tokens, not to user tokens. I can get a new access_token and id_token for the user from my API using the following request: curl -v POST "https://appleid.apple.com/auth/token" \ -H 'content-type: application/x-www-form-urlencoded' \ -d 'client_id=CLIENT_ID' \ -d 'client_secret=CLIENT_SECRET' \ -d 'grant_type=refresh_token' \ -d 'refresh_token=REFRESH_TOKEN' Is this enough to verify the identity? Should I then check that the id_token I receive matches the one I have or is it enough that I have checked the jwt information and validated the refresh_token? Thanks!

Hello, I am working on an OAuth login with Apple for our web applications. We ended up using the npm module "react-apple-signin-auth", which is based off of the apple js library. We are using a popup setup with name and email as requested scopes. This all works perfectly fine on Chrome/Chromium, Mozilla, etc. However, the same code base has issues on Safari browser. We are also having troubles implementing this for our react native Webview. It seems that after the popup is shown (after being manually allowed on the client PC), it frezes after logging in and clicking Continue. It stays with a white screen and does not return back to the origin/redirectURI. I can see someone has a similar issue: https://developer.apple.com/forums/thread/131438 Any clues?

I've previously done a successful test implementation of "Sign in with Apple JS" in straight HTML / JS. Now, I am trying to move it into a React App. (Disclaimer: I've been doing web development for over a decade, but React is brand new to me -- as in since Jan 1.) I'm currently using an npm package called: "react-apple-signin-auth". I've set the redirectURI to https://develop.mySite.com/ (only with my actual development site url). When I use React to preview the process in localhost, it works up until the point that it is supposed to return the data collected back to me. (It lest me sign in, performs the 2A authentication, then gives me a Continue button -- but won't move forward from there.) When I build the React app and put the resulting code on my development site, it chokes -- displaying an error that says: "Your request could not be completed due to an error. Try again later." (In the console log, it throws the following: {"error": "popup_closed_by_user"}.) Has anyone here done this in a React app who might be able to give me a pointer on whether my redirectURI is set properly? (Or what else might be at issue here?) I'm happy to provide additional data, but can't include a link to the development site because corporate keeps it behind a firewall that only allows access to personnel within the building. Thank you, JD const responseApple = () => {   try {     return appleAuthHelpers.signIn({       authOptions: {         clientId: '<<snip>>',         redirectURI: 'https://develop.<<snip>>.com/',         usePopup: true,       },       onSuccess: (response) => console.log('responseApple - response', response),       onError: (error) => console.log('responseApple - error', error),     });   }   catch (error) {     console.log('responseApple - catch error', error);     //handle error.   } } const AppleSignInBtn = ({ ...rest }) => (   /** Apple Signin button */   <AppleSignin     /** Auth options passed to AppleID.auth.init() */     authOptions={{       clientId: '<<snip>>',       scope: 'name email',       redirectURI: 'https://develop.<<snip>>.com/',       usePopup: true,     }}     /** General props */     uiType="light"     /** className */     className="apple-auth-btn"     /** Allows to change the button's children, eg: for changing the button text */     buttonExtraChildren="Apple"     /* onClick={() => console.log('Apple onClick')} */  // default = undefined     /** Called upon signin success in case authOptions.usePopup = true -- which means auth is handled client side */     onSuccess={() => responseApple} // default = undefined     /** Called upon signin error */     onError={(error) => console.log('AppleSignInBtn onError error', error)} // default = undefined     /** Skips loading the apple script if true */     skipScript={false} // default = undefined     /** Checkout README.md for further customization props. */     /** Spread rest props if needed */     {...rest}   /> ); The error is coming from: onError={(error) => console.log('AppleSignInBtn onError error', error)}

Hello everyone, We have an app that was already published on AppStore using a third-party login (google login). However, we offer a client app for users that create their account from our web based access. It is not possible to create an account neither with your email or with other third party sign up using the mobile app. Even with this scenario, Apple reviewers rejected our app after a small bug fix release suggesting we should include Apple sign in option. Any thoughts about that? We think it’s a big misunderstood of our app business..

Does apple sign in private key have expire date

Hey all. So I'll keep it short. I registered by App Service ID and Key and everything. I even enabled Apple Sign in from Firebase and got sign in with Apple to work on my Swift iOS app. Now I want it to work on my web app via Vanilla Javascript. When I run the following code on my frontend after initiating firebase, I don't get anything. Like absolutely no error in console or any kind of pop up. I'd appreciate if someone could tell me what I'm doing wrong. Thanks in advance! const provider = new firebase.auth.OAuthProvider('apple.com'); firebase.auth().signInWithPopup(provider).then((result) => { /** @type {firebase.auth.OAuthCredential} */ var credential = result.credential; // The signed-in user info. var user = result.user; // You can also get the Apple OAuth Access and ID Tokens. var accessToken = credential.accessToken; var idToken = credential.idToken; // ... }) .catch((error) => { // Handle Errors here. var errorCode = error.code; var errorMessage = error.message; // The email of the user's account used. var email = error.email; // The firebase.auth.AuthCredential type that was used. var credential = error.credential; // ... }); // Result from Redirect auth flow. firebase.auth().getRedirectResult().then((result) => { if (result.credential) { /** @type {firebase.auth.OAuthCredential} */ var credential = result.credential; // You can get the Apple OAuth Access and ID Tokens. var accessToken = credential.accessToken; var idToken = credential.idToken; // ... } // The signed-in user info. var user = result.user; }) .catch((error) => { // Handle Errors here. var errorCode = error.code; var errorMessage = error.message; // The email of the user's account used. var email = error.email; // The firebase.auth.AuthCredential type that was used. var credential = error.credential; // ... }); }

I am testing SNS login using Apple login API. Apple is not able to test in the local environment, so it is conducting the test using a free domain. Hosting is being tested using the netlify site. I can access the hosted site and the uri registered as a callback. There is no problem with just accessing two domains, but 404 error pages are missing when moving url through login api. Can you help me with the reason why I can’t? https://github.com/applelogintest/test my github address

We implemented Sign in with Apple ID in our web app and ServiceId, but The logo is not showing in the “Sign in with Apple” consent screen. Our App is on the store approved. Native Login Can show the App icon but Login with JS and serviceID not working Is there a way to configure this?

I'm trying to implement Sign in with apple My tech stack of frontend include React Native + the Reactjs Problem is that I want to remove the Use a different Apple Id option as shown in the images below 1st one is of Binance which has removed the option that I'm talking about 2nd one is my app where this option is coming I read the full documentation of apple developer but found nothing Kindly help me out

In the App Store guidelines it is stated as mandatory to provide sign in with apple. Is the app allowed to block users who register with "hide my email" and not allowing them to create an account? https://developer.apple.com/app-store/review/guidelines/#sign-in-with-apple