Apple Pay In-App Provisioning – HTTP 500 (HTML) on broker endpoint in production (TestFlight)

App & System Services Apple Pay
Jessewnca OP
Created 6d
Replies 1
Boosts 0
Views 30
Participants 1

We are implementing Apple Pay In-App Provisioning (EV_ECC_v2) for our EU app. The same codebase and encryption logic works successfully for our main app (different bundle ID and Adam ID), but the EU app consistently fails with HTTP 500.

Environment:

  • Entitlement: Granted (Case-ID: 18772317)

  • Encryption scheme: EV_ECC_v2

Issue:

During In-App Provisioning, the iOS app successfully obtains certificates, generates cryptographic material (encryptedCardData, activationData, ephemeralPublicKey), and POSTs to Apple's broker endpoint. The request fails at:

  • Endpoint: POST /broker/v4/devices/{SEID}/cards

  • Response: HTTP 500 with an HTML error page (not a JSON business error)


<html>

<head><title>500 Internal Server Error</title></head>

<body>

<center><h1>500 Internal Server Error</h1></center>

<hr><center>Apple</center>

</body>

</html>

Key observations:

  1. Our main app (different bundle ID/Adam ID) uses identical encryption code, private keys, and key alias — and works correctly in production.

  2. Manual card provisioning through Apple Wallet on the same device succeeds.

  3. The entitlement com.apple.developer.payment-pass-provisioning is confirmed present in the provisioning profile (verified via codesign).

  4. The 500 response is HTML rather than JSON, suggesting the request is rejected at the gateway level before reaching Apple Pay business logic.

What we've verified:

  • Entitlement correctly configured in provisioning profile

  • ephemeralPublicKey is in uncompressed format (65 bytes, starts with 0x04)

  • encryptionVersion is EV_ECC_v2

  • No double Base64 encoding

Question:

Could you please check whether Adam ID 6745866031 has been correctly added to the server-side allow list for In-App Provisioning in the production environment? Given the HTML 500 (not JSON) and that the identical code works for our other app, we suspect this may be an allow list or account configuration issue rather than a cryptography error.

I will follow up with a Feedback Assistant ID including sysdiagnose logs shortly, per the steps outlined in https://developer.apple.com/forums/thread/762893

Replies  1
Boosts  0
Views  30
Participants  1
Jessewnca OP
6d

Feedback ID: FB22339098

0
Apple Pay In-App Provisioning – HTTP 500 (HTML) on broker endpoint in production (TestFlight)
First post date Last post date
 
 
Q