Apple Login Integration Kit

Registering an Apple service

To allow PingFederate to process social sign-on requests with Apple, add PingFederate as a Sign in with Apple service on the Apple Developer site.

About this task

You can find official Apple documentation and troubleshooting suggestions in Configure Sign in with Apple for the web in the Apple Developer documentation.

Steps

  1. Sign on to the Apple Developer site with an Apple Developer administrator account.

  2. On the Certificates, Identifiers & Profiles → Identifiers page, next to the Identifiers heading, click +.

  3. On the Register a new identifier page, select Services IDs. Click Continue.

  4. On the Register a Services ID page, in the Description field, enter a description for your application.

  5. In the Identifier field, enter a name for your application, such as com.example.mywebservice. You will use this as the Services ID in Configuring an adapter instance. Click Continue. Click Register.

    This is different from the bundle ID that you entered in Registering an Apple app.

  6. On the Identifiers page, select the service that you created.

  7. On the Edit your Services ID Configuration page, select Sign in with Apple. Click Configure.

  8. On the Web Authentication Configuration modal, from the Primary App ID list, select the app that you registered in Registering an Apple app.

  9. In the Register Website URLs section, in the Domains and subdomains field, enter the domain or domains for your web application, such as example.com.

  10. In the Return URLs field, enter the Apple IdP Adapter callback endpoint on your PingFederate server, based on the following: https://pf_host:pf_port/ext/apple-authn. Click Next. Click Done.

  11. Click Continue. Click Save.