Server-Side Sign in with Apple

Nov 15 2022 Swift 5.6, macOS 12, iOS 15, Xcode 13.3

Part 2: Add Sign in with Apple to a Website

8. Handle the Sign in with Apple Callback

Episode complete

Play next episode

Next
Save for later
About this episode
See forum comments
Cinema mode Mark complete Download course materials
Previous episode: 7. Add the Sign in with Apple Button to a Website Next episode: 9. Authenticate Sign in with Apple Users on the Web

This video Handle the Sign in with Apple Callback was last updated on Nov 15 2022

Heads up... You've reached locked video content where the transcript will be shown as obfuscated text.

You can unlock the rest of this video course, and our entire catalogue of books and videos, with a kodeco.com Professional subscription.

When a user signs in with Apple on the web, they authenticate with Apple servers.

func appleAuthCallbackHandler(_ req: Request) async throws -> View {

}
let siwaData = try req.content.decode(AppleAuthorizationResponse.self)
guard let sessionState = req.cookies["SIWA_STATE"]?.string, !sessionState.isEmpty, sessionState == siwaData.state else {
    req.logger.warning("SIWA does not exist or does not match")
    throw Abort(.unauthorized)
}
struct SIWAHandleContext: Encodable {
  let token: String
  let email: String?
  let firstName: String?
  let lastName: String?
}
let context = SIWAHandleContext(token: siwaData.idToken, email: siwaData.user?.email, firstName: siwaData.user?.name?.firstName, lastName: siwaData.user?.name?.lastName)
return try await req.view.render("siwaHandler", context)
authSessionsRoutes.post("login", "siwa", "callback", use: appleAuthCallbackHandler)
<!doctype html>
<html lang="en" class="h-100">
  <head>
    <!-- Required meta tags -->
    <meta charset="utf-8">
    <meta name="viewport" content="width=device-width, initial-scale=1">
    <title>Sign in With Apple | Southdown Marketplace</title>
  </head>
  <body class="d-flex flex-column h-100">

  </body>
</html>
<script>
  function handleCallback() {
    const form = document.getElementById("siwaRedirectForm")
    form.style.display = 'none';
    form.submit();
  }
  window.onload = handleCallback;
</script>
<form action="/login/siwa/handle" method="POST" id="siwaRedirectForm">
    
</form>
<input type="hidden" name="token" value="#(token)">
<input type="hidden" name="email" value="#(email)">
<input type="hidden" name="firstName" value="#(firstName)">
<input type="hidden" name="lastName" value="#(lastName)">
<input type="submit" value="If nothing happens click here">