Name information on Apple Sign In

Kristian 1 Reputation point
2021-10-05T05:35:26.533+00:00

We enabled the Sign in With Apple feature in Azure App Service as instructed in this page:
https://learn.microsoft.com/en-us/azure/app-service/configure-authentication-provider-apple

We were able to make it work, however, we are having trouble getting the user's name information, even though this is part of the scope parameter. When we get the user's info via .auth/me endpoint, this info is not present whereas Other SSO Providers that we are using with the feature such as Google and Facebook has this information.

I researched Apple Docs/Forums as well, and it mentions that this info is only available upon initial sign in of the user to the application.
https://developer.apple.com/forums/thread/121496

I am expecting that on initial sign in via Azure App Service, we would get this information as well, but for some reason, we cannot.

Since it is the App Service that handles the initial response after a successful login, is this a bug on App Service side? Do you have any recommendations on how we can get the name information, at least even on initial sign up?

Azure App Service
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
6,908 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Ryan Hill 25,981 Reputation points Microsoft Employee
    2021-10-07T12:39:15.537+00:00

    Hi @Kristian ,

    If your configuration is as such 

       "apple": {  
       "registration": {  
           "clientId": "<client ID>",  
           "clientSecretSettingName": "APP_SETTING_CONTAINING_APPLE_CLIENT_SECRET"  
       },  
       "login": {  
           "scopes": [  
               "name",  
               "email"  
           ]  
       }  
   }

    then &scope=name%20email sent in the request to apple. Enable web server logging to verify the URL is correctly being sent. Apple should then send a response back containing the user information. If you're getting the email but not the name, then the omission may have something to do with the private relay Apple recently released; see https://developer.apple.com/documentation/sign_in_with_apple/sign_in_with_apple_rest_api/authenticating_users_with_sign_in_with_apple.

    ---

    UPDATE: Currently, Apple Easy Auth provided only uses the email provided in the jwt from Apple and not the name.