{"id":5953,"date":"2021-01-11T11:58:40","date_gmt":"2021-01-11T11:58:40","guid":{"rendered":"https:\/\/uhp.digital\/?p=5953"},"modified":"2021-01-11T12:33:33","modified_gmt":"2021-01-11T12:33:33","slug":"wie-man-sign-in-with-apple-implementiert","status":"publish","type":"post","link":"https:\/\/uhp.digital\/en\/blog\/wie-man-sign-in-with-apple-implementiert\/","title":{"rendered":"How to Implement Sign in With Apple Authentication in Symfony"},"content":{"rendered":"

Like Google, Apple introduced an authentication system called Sign in With Apple<\/strong> .<\/p>\n\n\n\n

This means that users who have Apple ID can sign in or login to a web or an app service using their existing credentials.<\/p>\n\n\n\n

This article will help you to understand and implement Sign in With Apple feature into your Symfony application.<\/p>\n\n\n\n

Who is this article for?<\/strong><\/h4>\n\n\n\n

This article is useful for PHP backend developers. It has been written for Symfony framework but it can be used for other frameworks as well (with some changes).<\/p>\n\n\n\n

This article is not for beginners and will not explain the basic setup of Symfony. To know more about Symfony, you can find the Symfony documentation here<\/a>.<\/p>\n\n\n\n

If you would like to follow this tutorial, some previous knowledge is required. More specifically, we are talking about the knowledge of:<\/p>\n\n\n\n

1. PHP OOP<\/p>\n\n\n\n

2. Symfony<\/p>\n\n\n\n

Benefits of the Apple Sign in authentication<\/strong><\/h4>\n\n\n\n

Apart from using the existing login service provider UI, users now have an option to \"privately\" sign in to a service.<\/p>\n\n\n\n

What that means is that Apple will hide real user email and generate a new one that will need to be used in a service.<\/p>\n\n\n\n

This will also prevent trackers from other platforms to track what kind of apps or services you are using.<\/p>\n\n\n\n

If you are using an Apple device, sign in can be achieved via Touch ID or Face ID that is a quicker way of signing in.<\/p>\n\n\n\n

Is Sign in with Apple mandatory?<\/strong><\/h4>\n\n\n\n

If you're dealing with an API that requires an authentication of iOS devices, then the answer is yes.<\/p>\n\n\n\n

At this point, Apple is forcing their new or existing apps that have any kind of a \u201esign in\u201c feature to also implement Sign in with Apple.<\/p>\n\n\n\n

How Sign In with Apple works:<\/strong><\/h4>\n\n\n\n

The server side authentication is very easy to understand as most of the job is on the Client App side. \nClient App (mobile or frontend app) will connect to an Apple server and will send the user's email and password. In this step, the user will be asked if he would like to hide his email.<\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

Apple will then return the user data to the Client App and that data will be sent to the Server. The most important thing here is the authorization_code<\/strong>. <\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

What the server is actually doing is verifying that the authotization_code is valid and that the user exists. <\/p>\n\n\n\n

Since the user can hide his email, we need to be aware that we will not get the user's real data - except in the case when the real data is neccessery and we ask the user that later.<\/p>\n\n\n\n

Steps:<\/p>\n\n\n\n

  1. App will send us an authorization_code on the backend server<\/li>
  2. Backend server will make a request to an Apple server<\/li>
  3. Apple server will return a response<\/li><\/ol>\n\n\n\n

    Requirements:<\/p>\n\n\n\n