Creating an Apple private key
To allow PingFederate to process social sign-on requests with Apple, add PingFederate as an OpenID Connect application in the Apple administrative console. PingFederate uses the resulting private key to sign the client secret JWT that it sends to Apple.
Steps
-
Sign on to the Apple Certificates, Identifiers & Profiles page using an Apple Developer administrator account.
-
On the Keys page, next to the Keys heading, click Add (+).
-
On the Register a New Key page, in the Key Name field, enter a name, such as
My PingFederate Client Secret Signing Key
. -
Select Sign in with Apple. Click Configure.
-
On the Configure Key page, from the Choose a Primary App ID list, select the app that you registered in Registering an Apple app. Click Save.
-
On the Register a New Key page, click Continue.
-
Verify your configuration, and then click Register.
-
On the Download Your Key page, note the Key ID. You will use this in Configuring an adapter instance.
-
Click Download, and then save the
.p8
file. You will use this in Configuring an adapter instance. Click Done.You can only download your private key once. Keep it in a secure place.