Initial test of the "Sign in with Apple" API: * It's more or less based on OAuth + OIDC * Their documentation is missing a lot of key info to use it right now, I had to guess at a lot of things * The `sub` claim includes some sort of unique user identifier, not an email

Jun 3, 2019 · 9:21 PM UTC

4
20
65
weirdnesses: * Their token endpoint requires setting a User-Agent header, otherwise responds with an HTML error * Client secrets are a signed JWT using ECDSA + SHA256 * An email address isn't returned even when requesting the `email` scope
2
9
If you're interested, here is my sample code I was able to use to get an access token and ID token from Apple github.com/aaronpk/sign-in-w…

GitHub - aaronpk/sign-in-with-apple-example: Sample code for the Sign in with Apple API

Sample code for the Sign in with Apple API. Contribute to aaronpk/sign-in-with-apple-example development by creating an account on GitHub.

github.com
1
9
28
Replying to @aaronpk
Do you know if I can request users profile picture ?
1
1
So far there is no indication that'll be possible.
1
1
more replies
Replying to @aaronpk
Oh, nice, where did you find the details?
1
1
They have some docs here developer.apple.com/sign-in-… but their docs are missing quite a bit right now. I had to guess at some endpoints and things.

Getting Started - Sign in with Apple

Sign in with Apple makes it easy for users to sign in to your apps and websites using their Apple ID.

developer.apple.com
1
6
more replies
Replying to @aaronpk
Thanks 🙏 Really interested in this one, hope it won’t be flawed by technical “sillyness” like in the previous incarnations of the AuthenticationServices
2