Sign in vs SSO

On Jul 3, 2019, roee84 wrote:

> I know that Sign in with Apple would be required for apps that support third-party sign-in.

> But I'm not sure - is sign in and single sign on (SSO), are the same?

> If I'm allowing users to login to my app via SSO, I need to allow them login with Apple Sign In?

Enterprise Single Sign-On and Sign in with Apple are two separate authentication mechanisms. Single Sign-On utilizes an extension to handle authentication requests for provide credentials with third-party providers. Sign in with Apple gives users the ability to sign in to your serices with their Apple ID. For more information about more services, please see the documentation for the AuthenticationServices framework.

For the Sign in with Apple requirements, as of Mar 4, 2020, the App Store Review Guidelines states the following—

4.8 Sign in with Apple

Apps that use a third-party or social login service (such as Facebook Login, Google Sign-In, Sign in with Twitter, Sign In with LinkedIn, Login with Amazon, or WeChat Login) to set up or authenticate the user’s primary account with the app must also offer Sign in with Apple as an equivalent option. A user’s primary account is the account they establish with your app for the purposes of identifying themselves, signing in, and accessing your features and associated services.

Sign in with Apple is not required if:

• Your app exclusively uses your company’s own account setup and sign-in systems.
• Your app is an education, enterprise, or business app that requires the user to sign in with an existing education or enterprise account.
• Your app uses a government or industry-backed citizen identification system or electronic ID to authenticate users.
• Your app is a client for a specific third-party service and users are required to sign in to their mail, social media, or other third-party account directly to access their content.