Closed ikleiman closed 1 year ago
Hello @ikleiman,
Following the instructions on https://developer.apple.com/documentation/sign_in_with_apple/revoke_tokens, it mentions a "client_secret" used in the login flow. I've searched through the code and in other issues, but can't seem to found any relevant information.
Any idea on how to get that value?
I am not sure you still need help but i have used the method below to create the client secret. https://www.mongodb.com/docs/atlas/app-services/authentication/apple/#create-the-client-secret-jwt
Thanks @mesoylu , I just did the entire workflow without any troubles. If anyone have the same issue, you just need to:
And that's all
I found this information very helpful. I've summarized it (but in Japanese) and I hope it will be of help to someone next time.
I've received the following email from Apple yesterday:
_Starting June 30, 2022, apps submitted to the App Store that support account creation must also include an option to initiate account deletion.
We noticed this app may support account creation. If it does not, you may disregard this message. If it already offers account deletion or you’re working to implement it, we appreciate your efforts to follow the App Store Review Guidelines. Apps submitted after June 30 that do not comply with the account deletion requirements in guideline 5.1.1(v) will not pass review.
Learn more about the account deletion requirements. If your app offers Sign in with Apple, use the Sign in with Apple REST API to revoke user tokens._
Following the instructions on https://developer.apple.com/documentation/sign_in_with_apple/revoke_tokens, it mentions a "client_secret" used in the login flow. I've searched through the code and in other issues, but can't seem to found any relevant information.
Any idea on how to get that value?
Found this SO topic that follows the same subject, but it haven't any concrete answer yet: https://stackoverflow.com/questions/72399534/how-to-make-apple-sign-in-revoke-token-post-request