Apple IdP Adapter settings reference
Field descriptions for the Apple IdP Adapter configuration screen.
| Field | Description |
|---|---|
Team ID |
The Team ID that you noted in Registering an Apple app. This is used as |
Services ID |
The Identifier that you registered in Registering an Apple service. This is used as the |
Key ID |
The Key ID that you noted in Creating an Apple private key. This is used as |
Client Secret Signing Key |
The private key PingFederate encrypts this file when you add it to your configuration. |
Error Redirect URL |
When an error occurs in the adapter, PingFederate redirects the browser to this URL instead of the default error page. This field is blank by default. |
Authorization Callback Endpoint |
The PingFederate endpoint that Apple uses to respond to authorization requests. If you set a custom endpoint in the Authorization callback URL field in Registering an Apple service, change this field to match. This default value is |
| Field | Description |
|---|---|
Apple Authorization URL |
The URL that PingFederate uses to send authorization requests to Apple. If Apple changes this endpoint, enter the new URL. The default value is |
Apple Access Token URL |
The URL that PingFederate uses to retrieve access tokens from Apple. If Apple changes this endpoint, enter the new URL. The default value is |
Apple ID URL |
The URL that PingFederate uses to communicate with Apple ID. The default value is |
Apple Public Key URL |
The URL that PingFederate uses to retrieve the Apple public key. The default value is |
Client Secret Expiration |
The amount of time in minutes that the client secret is valid. Enter a value between 1 and 262950 (6 months). The default value is |
Scopes |
The scopes that you want to request from Apple. Separate scopes with a space. See the note about scopes in Known issues and limitations. Valid scopes include The default value is |
Apple Sign-On Presentation |
Determines how the adapter presents the Apple sign-on form.
This setting has no effect when using the adapter through the PingFederate authentication API. |
Apple Pop-Up Template |
The template file that presents the Apple sign-on form. Applies only when Apple Login Presentation is set to Pop-up window. The default value is |
Apple Post-Auth Template |
The template file that the adapter presents after the user signs on. Applies only when Apple Login Presentation is set to Pop-up window. The default value is |
Apple Messages File |
The language-pack file associated with the Apple pop-up template. The default value is |
Retry Request |
Determines whether PingFederate will retry requests after it receives a response with a failure code. This check box is cleared by default. |
Maximum Retries Limit |
Determines how many times PingFederate retries a request. The default value is |
Retry Error Codes |
A list of response codes that you want to trigger a retry. Separate response codes with a comma. The default value is |
API Request Timeout |
The amount of time in milliseconds that PingFederate waits for Apple to respond to requests. A value of The default value is |
Connection Timeout |
The amount of time in milliseconds that PingFederate allows to establish a connection with Apple. A value of 0 disables the timeout. The default value is |
Proxy Settings |
Defines proxy settings for outbound HTTP requests. The default value is System Defaults. |
Custom Proxy Host |
The proxy server host name to use when Proxy Settings is set to Custom. This field is blank by default. |
Custom Proxy Port |
The proxy server port to use when Proxy Settings is set to Custom. This field is blank by default. |