“Sign In with Apple” is a new feature that enables users to sign in with their Apple ID to apps. This feature improves security and privacy for users’ accounts in apps.
As well as most iOS and macOS users already have an Apple ID, “Sign In with Apple” allows them to use their Apple ID to sign in to other websites and apps.
For now, Keycloak does not provide a ready-to-use identity provider for Apple like Google or Facebook. Sign In with Apple is obligatory to publish apps in the App store. Integration this feature with Keycloak is not a rocket science, however, it has some non-obvious issues that are hard to implement from the first try. Sign In with Apple guidelines do not cover all questions in practice.
Our FreySoft team implemented Sign In with Apple for our recruitment app. In this post, we will provide you with a step-by-step plan for how to integrate Apple Sign In with Keycloak.
Configure Sign In with Apple in 4 Steps
Step 1
The first step is to sign in to Account on developers.apple.com. Then go to Identifiers, select App IDs in the upper right corner, and click on the Plus icon in Identifiers.
You have the list of new identifiers that looks like this:
Choose App IDs, press Continue, and select the type “App”.
After pressing Continue you need to insert the Description name. You have to indicate something descriptive connected to your application. Also, insert Bundle ID (we entered our reverse domain name). Make sure Explicit is on here!
Put a checkmark in front of Sign in with Apple and press Edit.
Then, select Enable as a primary Apple ID. In “Server to Server Notification Endpoint” insert URL to Keycloak and press Save.
Go to Identifiers again. In the upper right corner, select Services IDs instead of Apple IDs. And press the icon Plus.
Continued: Apple Sign In With Keycloak: Step 2-4 with coding
Top comments (0)