Context
We are experiencing inconsistent behaviour with "Sign in with Apple" across different environments (we have an app for "A" and "B" regions) on our web client in browsers.
Specifically, we have observed two key issues:
-
Missing
emailandemail_verifiedClaims in ID Token- In some cases, the ID token received after successful authentication does not contain the
emailandemail_verifiedclaims. - Here the docs state that "Alternatively, if the managed Apple ID is in Apple School Manager, the email claim may be empty. Students, for example, often don’t have an email that the school issues.", but this was experienced with a non-student Apple ID.
- This issue was observed for certain users in the "A" environment, while the same users had no issues in the "B" environment.
- For one affected user, removing and re-enabling the "Sign in with Apple" integration resolved the issue (https://account.apple.com/account/manage/section/security).
- However, for another user, the integration could not be removed, preventing this workaround (button was active, but did nothing).
- In contrast, for some users, authentication works correctly in both environments without missing claims.
- In some cases, the ID token received after successful authentication does not contain the
-
Inconsistent Display of App Icon and App Name
- The app icon and app name do not always appear on the Apple login interface.
- One user observed that the app icon and name were displayed in "A" but not in "B".
- Another user had the opposite experience, with the app icon and name appearing in "B" but not in "A".
- A third user did not see the app icon or name in either environment.
Questions
- Why does the app icon and name not always appear on the "Sign in with Apple" login screen?
- How is it possible that the ID token sometimes lacks
emailandemail_verifiedclaims when using the same Apple ID in different environments?