Sign in with Apple

Sign in with Apple is a single sign-on provider operated by Apple Inc., introduced on June 3, 2019, at Apple's 2019 Worldwide Developers Conference (WWDC) in iOS 13.^[1]

Sign in with Apple

Type	Single sign-on provider
Launch date	September 19, 2019
Platform(s)	iOS, Android, Web (JavaScript)
Status	Active
Website	developer.apple.com/sign-in-with-apple/

Usage

It is designed to allow users to create accounts for third-party services with a minimal amount of personal information, only requiring the user to provide a name and email address.

Users can opt for the email address associated with their Apple Account or choose the "Hide My Email" option to generate a disposable email address specific to the service; these addresses end in the privaterelay.appleid.com domain.^[2]

Messages sent via a disposable (or relay) email address are automatically forwarded to a verified email address of the user's choice, and this function can also be disabled if needed.^[3][4]

The service is compatible^[5] with the OAuth 2.0 and OpenID Connect standards, and integrates with Face ID, Touch ID and OpticID on iOS, iPadOS, macOS and visionOS^[6][7]

Usage in software development

Sign in with Apple is opposed to login services offered by social networking service platforms such as Facebook, where such features may also grant the third-party service access to personal information tied to their account.

On September 12, 2019, Apple updated the App Store Review Guidelines to stipulate that developers whose apps use at least one third-party login service must implement Sign in with Apple.

It comes with exceptions for apps that function exclusively as a client for a specific service (such as the Twitter app), that use a login service backed by a citizen identification system, or that are developed to work exclusively with a company's first-party login service.^[8]

Apple's human interface guidelines require sign in with Apple buttons to be no less prominent than other sign-in services, and to appear "above the fold" without the user having to scroll.^[9]

For use outside of iOS apps, Apple also offers a JavaScript library to implement Sign in with Apple on Android and the web.^[4]

Compliance with the OpenID standard

In October 2019, Apple made the service compliant with the OpenID Connect authentication standard. It had previously not been fully compliant, having for example excluded "Proof Key for Code Exchange" (PKCE)—the absence of which exposed users to possible replay attacks and code injection vulnerabilities.^[10][5]