@aaronpk Hi Aaron, I read your article about Apple Sign In. I'm also having trouble getting the email address from the token, while the sample iOS app does receive the email. I tried a lot of different scopes, but they all result in the same data. Is Apple aware of these issues?

I haven't heard any updates yet, but keep an eye on their docs pages.

I opened a ticket on the developer support forum: forums.developer.apple.com/m…

Thanks! I can't believe they actually replied to it too!

Another question: did you manage to exchange the authorization code provided by the Apple Sign In framework on iOS for a token using the REST API? I'm getting "invalid_grant".

Hi, Jeroen. Did you manage to figure out what was causing the "invalid_grant" error for you? I'm implementing Sign in with Apple right now and I'm also getting "invalid_grant". 🤔

Nope. It's still on our backlog to fix someday, but I'm waiting for their implementation to be more stable.

Ah, that’s a shame. It seemed to be going well so far and I thought I'd be done today but since getting "invalid_grant" I've made no progress (I'm using it in an Expo app). I've seen it mentioned in a few places but nobody seems to have a solution. Thanks for the quick reply. 👍

They pushed out some changes a little bit ago and I have been able to exchange the authorization code and get the user info now! I updated my post so maybe take a look through it again. developer.okta.com/blog/2019…

Hi, Aaron. Thanks for the link to your great article. Unfortunately, for me, I still can't get past the "invalid_grant" issue. I'm doing this for an Expo (React Native) app so things are slightly different in that I don't need redirect_url, etc. but generally it's the same. Hmm.