microsoft / appcenter

Central repository for App Center open source resources and planning.
https://appcenter.ms
Creative Commons Attribution 4.0 International
1.01k stars 223 forks source link

AppStore Connect two factor auth with trusted phone number is not possible #996

Closed evorotnikov closed 1 year ago

evorotnikov commented 5 years ago

As part of distribution of iOs build there is a possibility to deploy it directly to AppStore/TestFlight vis store connection.

Currently while creating new connection for AppStore Connect i can't use trusted phone number and i don't have ios device with linked Apple Id, so there are no way to create a store connection.

It will be great to be able use trusted phone number and got two factor auth via sms or phone call.

blparr commented 5 years ago

Hi @evorotnikov - thanks for your feedback! We'll take that into consideration for future prioritization.

Oddj0b commented 5 years ago

@evorotnikov Are you talking about support for 2-step verification instead of 2-factor authentication?

evorotnikov commented 5 years ago

@Oddj0b not really in my understanding, it's still 2-factor, but apple originally provide several options how to get a second factor:

So second case is not covered in appcenter in my opinion.

Attaching what i see while logging in into developer.apple.com:

Screen Shot 2019-09-10 at 10 12 35 AM Screen Shot 2019-09-10 at 10 12 29 AM
Oddj0b commented 5 years ago

@evorotnikov thanks for clarifying, I wasn't aware that Apple offered a service like this. I'll talk with our engineers to understand how hard it would be to implement. We normally prioritize Github tickets by reaction and if this receives enough 👍 there's a bigger chance it will be implemented.

evorotnikov commented 5 years ago

@Oddj0b sure, thanks for replying to this one. I hope it will eventually be in.

ajaykn commented 5 years ago

@evorotnikov Apple by default sends 2FA codes to your trusted phone number if you have no devices linked. Please check once https://appleid.apple.com/account/manage

image

And you should be able to create a store connection in AppCenter with the codes you receive to your phone number as you mentioned that your account has no devices linked. We hope you are not blocked currently.

But yeah option where we explicitly wants to receive the code to the phone instead of devices is not available in AppCenter.

bramski commented 4 years ago

I can't use my SMS code to connect the apple account. This is very frustrating as my iPhone died. The code won't go to my macbook and I'm stuck unable to upload our production build.

ajaykn commented 4 years ago

Hi @bramski If I understand correctly, you are not receiving codes to your MacBook. Can you check if your MacBook is listed under trusted devices here

bramski commented 4 years ago

It's tied to a dead iphone and since that's unavailable i'm getting them by SMS. My Macbook is a trusted device.

bramski commented 4 years ago

I searched through why my macbook isn't receiving them; apple prefers to send to your mobile device and if that's unavailable it will send to your SMS. So I'm stuck unable to upload my builds until I can revive the iPhone.

ajaykn commented 4 years ago

Oh thats strange why your MacBook is not receiving the 2fa codes. Notifications are hidden, if you have DnD mode ON, if so please turn it off and give a try.

image
rzane commented 4 years ago

This is also happening to me.

Turns out that I was signed into a different Apple ID on my MacBook. Once I switched accounts, I got the message.

Oddj0b commented 4 years ago

It sounds like you have a trusted phone number and not a trusted device: https://support.apple.com/en-us/HT204915

ptrkstr commented 4 years ago

Is there any movement on this? Noticed the error message states that I can't use text messages. image

maciejtrybilo commented 4 years ago

I'm in a bit of a bind with this one. We use managed Apple IDs in the company and Apple has disabled the "trusted devices" 2FA for managed Apple IDs and I can only receive the code via SMS. But, as the screenshot above shows, App Center doesn't support 2FA via SMS codes.

I would be very grateful if you could add support for SMS codes as I'm unable to set up TestFlight distribution in App Center at all at the moment.

astk commented 4 years ago

I'm also stuck at this stage. Right now can't connect App Store because I don't have trusted device and there's no option to request to use trusted phone number added.

tiagopiresxpand commented 3 years ago

I'm in a bit of a bind with this one. We use managed Apple IDs in the company and Apple has disabled the "trusted devices" 2FA for managed Apple IDs and I can only receive the code via SMS. But, as the screenshot above shows, App Center doesn't support 2FA via SMS codes.

I would be very grateful if you could add support for SMS codes as I'm unable to set up TestFlight distribution in App Center at all at the moment.

@maciejtrybilo Do you have managed Apple IDs with federation enabled?

lourencogui commented 3 years ago

I'm facing the same issue

KAnderson commented 3 years ago

I have the same issue, it was working and I am unable to reconnect. I have multiple macbook pro's listed as devices but neither receive the code, it only comes via SMS

dimayurkovski commented 3 years ago

Same issue. SMS code come to phone but error message is "The verification code entered is invalid. Make sure your trusted device is logged to iCloud. Two-Factor Authentication via SMS is currently not supported. Enter the valid pop-up two-factor code from your trusted device."

erdenemunkh commented 3 years ago

Same issue. I am received SMS code. But verification failed. Stil error message.

amie-wilt commented 3 years ago

Same issue.

I'm using a separate Apple ID for development purposes (dev@...) instead of my personal Apple ID. From what I gather, I'd need to sign out of my iPhone with my personal Apple ID and sign in with the developer Apple ID so that my device could be recognized. However, that's a little cumbersome to have to do. Seems like the SMS code should suffice.

amie-wilt commented 3 years ago

I found a workaround (for my use case ☝️) for this in case anyone is still stuck.

Under "Add a device to the list" on this support page (https://support.apple.com/en-us/HT205064), there's a list of places you can sign into for your device to be recognized. One of those places is Game Center. I don't really know what that is but I don't use it so I figured I'd see if I could sign into it. I took the following steps on my iPhone, although I'm sure the same/similar goes for iPad, Mac:

  1. Go to Game Center (I just searched it).
  2. Sign out if you're already signed in.
  3. Toggle Game Center back on, and sign in with the Apple ID you're trying to get passcodes for.
  4. At this point you should see your device listed as a trusted device.
  5. Then go to Settings and click on your name to view your Apple ID info (which won't be the same as the one you just used in Game Center), then Password & Security, then "Get Verification Code".
  6. I used this verification code for AppCenter and it worked. ¯_(ツ)_/¯

Hope that helps.

tiagopiresxpand commented 3 years ago

I'm in a bit of a bind with this one. We use managed Apple IDs in the company and Apple has disabled the "trusted devices" 2FA for managed Apple IDs and I can only receive the code via SMS. But, as the screenshot above shows, App Center doesn't support 2FA via SMS codes. I would be very grateful if you could add support for SMS codes as I'm unable to set up TestFlight distribution in App Center at all at the moment.

@maciejtrybilo Do you have managed Apple IDs with federation enabled?

@maciejtrybilo yes i do.

maciejtrybilo commented 3 years ago

@amie-wilt Thank you for that, but when I go to the Game Center I get a message: "This Apple ID cannot be used with Game Center. Your Managed Apple ID is not eligible to use Game Center."

amie-wilt commented 3 years ago

@maciejtrybilo I did a quick search and maybe it's because your Game Center is toggled on for iCloud? I checked mine and it is not. I'd say trying turning it off if it is in fact turned on (Settings > Apple ID > iCloud) and then try those steps ☝️ again.

ianthetechie commented 3 years ago

Does anyone at Microsoft actually maintain this product anymore? This is completely absurd. Fix your junk.

Edit because I probably need to explain myself. The demand for a trusted device (when Apple clearly does SMS auth and sends me the code that App Center rejects) is completely unreasonable. The "trusted device" must be signed in with the Apple ID in question. Your device can be signed in to only a single Apple ID at a time for a variety of reasons. A very large number of professional Apple developers (anyone at an agency / freelancer / etc.) may be acting agents for a dozen or more Apple developer accounts, which may never be associated with any of your devices in this way. The App Center failure to support this use case is baffling for a CI service.

image
tkharuk commented 3 years ago

Two-Factor Authentication via SMS is currently not supported.

When the "currently" is going to happen? :) Are there any plans for this to be supported?

j-bbr commented 3 years ago

I want to give this another bump. Signing out and into developer accounts every 30 days is very annoying!

ianthetechie commented 3 years ago

Bump. This as BROKEN. We cannot use App Center without this. Your integration is broken. Full stop. Additionally, generating app-specific passwords seems to no longer work?

vietstone-ng commented 3 years ago

No one care :v

tkharuk commented 3 years ago

@j-bbr it is not only annoying. But since I don't use my PERSONAL Apple account for development, but rather a CORPORATE issued account. I'm simply unable to log in at all!

AntAttakk commented 3 years ago

Please fix this! I only have one device signed into my job Apple account. It works fine everywhere else using authentication via SMS to my personal phone, but not on AppCenter. This means we can no longer use the integration with AppStore at all.

khalilyamoun commented 3 years ago

No one cares :( leaving AppCenter soon.

michael-knee commented 3 years ago

I've hit the same issue with both trusted phone SMS codes and trusted device codes.

image

The screenshot above is for my work developer account, which I added as a secondary iCloud account on my laptop. The same approach works for my personal developer account (on the same laptop). I'm not sure what the difference is that prevents the work account from connecting.

Update My workaround is to:

nkovacic commented 3 years ago

No one cares :( leaving AppCenter soon.

Are there any alternatives?

ptrkstr commented 3 years ago

No one cares :( leaving AppCenter soon.

Are there any alternatives?

Bitrise with fastlane, until Xcode cloud comes out of beta

FranFara commented 3 years ago

Hello everyone, I have the same problem here. Are there any reports of any progress on this issue?

JohnFlyIII commented 3 years ago

Same issue. Please address. Please accept the SMS codes

phonglee commented 3 years ago

Here my fixed:

03D4FF6C-62E0-4702-BEED-6DE698AF15F0

JohnFlyIII commented 3 years ago

Here my fixed:

* Sign in with the apple account into the phone that registered phone number in the apple account

* In AppCenter, reconnect to the AppStore

* In phone, a message will be displayed to allow/not allow another device login -> Yes -> 6 digit code will be displayed

* Enter 6 digit code for AppCenter

The verification code entered is invalid. Make sure your trusted device is logged to iCloud. Two-Factor Authentication via SMS is currently not supported. Enter the valid pop-up two-factor code from your trusted device.

phonglee commented 3 years ago

Here my fixed:

* Sign in with the apple account into the phone that registered phone number in the apple account

* In AppCenter, reconnect to the AppStore

* In phone, a message will be displayed to allow/not allow another device login -> Yes -> 6 digit code will be displayed

* Enter 6 digit code for AppCenter

The verification code entered is invalid. Make sure your trusted device is logged to iCloud. Two-Factor Authentication via SMS is currently not supported. Enter the valid pop-up two-factor code from your trusted device.

You must use 6 digit code from the Verification Code dialog not the code from Messenger App otherwise you will get above error

JohnFlyIII commented 3 years ago

Here my fixed:

* Sign in with the apple account into the phone that registered phone number in the apple account

* In AppCenter, reconnect to the AppStore

* In phone, a message will be displayed to allow/not allow another device login -> Yes -> 6 digit code will be displayed

* Enter 6 digit code for AppCenter

The verification code entered is invalid. Make sure your trusted device is logged to iCloud. Two-Factor Authentication via SMS is currently not supported. Enter the valid pop-up two-factor code from your trusted device.

You must use 6 digit code from the Verification Code dialog not the code from Messenger App otherwise you will get above error

That's what the issue is. <----- see the original suggestion of "It will be great to be able use trusted phone number and got two factor auth via sms or phone call."

Some people do not have, or have access to a device that shows the dialog.

ghost commented 3 years ago

This issue has been automatically marked as stale because it has not had any activity for 60 days. It will be closed if no further activity occurs within 15 days of this comment.

ptrkstr commented 3 years ago

Bump

SarlaccNix commented 3 years ago

This is stupid. I had my connection up and running, I must upload a new version on my AppStore today and I need to waste my time now on this. Gosh, AppCenter is annoying.

syntax-e commented 3 years ago

Hi, In my org there are a few engineers who have their phone numbers registered with our single Apple ID's 2FA. There is only one Apple device that is signed in with that Apple ID and not everyone has physical access to that device to receive the 2FA dialog. Those engineers are unable to reestablish AppCenter connections to the Apple App Store when "Your Apple App Store Credentials are no longer valid. Please re-authenticate." occurs. It would be ideal if App Center supported an option allow the 2FA code to still be sent via SMS even if there is an Apple device logged in with that Apple ID somewhere.

tl;dr: This 2FA setup is quite challenging to manage in a group environment.

ghost commented 2 years ago

This issue has been automatically marked as stale because it has not had any activity for 60 days. It will be closed if no further activity occurs within 15 days of this comment.

ptrkstr commented 2 years ago

Bumping. Developers need this.

gcaven-nbx commented 2 years ago

This is a show-stopping problem for anybody who deals with multiple Apple IDs for work, how has this been allowed for fester for so long? Has anybody from Microsoft even acknowledged this issue?