To verify the identity token, your app server must:
- Verify the JWS E256 signature using the serverās public key
- Verify theĀ
nonce
Ā for the authentication - Verify that theĀ
iss
Ā field containsĀhttps://appleid.apple.com
- Verify that theĀ
aud
Ā field is the developerāsĀclient_id
- Verify that the time is earlier than theĀ
exp
Ā value of the token
To continue viewing...
You must sign up to view more content and gain full access to bloss!
Sign up todayAlready have an account? LoginSign up today for unlimited access:
- Book appointments
- Expert advice & tips
- Premium videos & audio
- Curated parenting newsletters
- Chat with your bloss community
- Discounts & competitions
- Special events
Leave a Rating / Review
You must be logged in to post a comment.