question

AmitaJain-4101 avatar image
0 Votes"
AmitaJain-4101 asked ·

Azure AD B2C: Apple Sign in not working with Azure AD B2C

I have set up Google, Facebook and Apple Sign-in for user log in. User is getting successfully logged in using FB and Google, but when I try to sign in with Apple, it signs in but throws error "Sign-up not completed."

Apple Sign in is configured as OpenIdConnect. I have followed specified steps from this article:
https://github.com/azure-ad-b2c/samples/tree/master/policies/sign-in-with-apple

The attached screenshot contains Azure AD B2C configuration.

71918-screenshot-2021-02-21-at-122037-am.png



I can provide more details if required. Thanks in advance for the help.

azure-ad-b2cazure-ad-openid-connect
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

JamesHamil-MSFT avatar image
0 Votes"
JamesHamil-MSFT answered ·

Hi @AmitaJain-4101 , your screenshot is showing that Apple is not registered as an identity provider. Please make sure that you have properly registered it before attempting to sign in. Please let me know if this works.

Thank you,
James

· 3 ·
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hello James,

Thanks for the reply. I am not able to figure out whats missing. Can you please help?

0 Votes 0 ·

Hi James,

Sorry for the trouble. But I really don't understand. Apple Sign in is configured as OpenId Connect Provider.
I have followed exact same steps as given in the https://github.com/azure-ad-b2c/samples/tree/master/policies/sign-in-with-apple

can you tell me the exact information I am putting wrong, as I am not seeing anything wrong in the screenshot. How can I fix the error you find wrong from the screenshot?


0 Votes 0 ·

Hi @AmitaJain-4101 , sorry about the delay in response. I sent this to my escalations team to get a fix. I'll also check with the content author to see if it needs an update. My advice for the time being would be to delete what you have here and start the steps over. I'll get back to you as soon as I can.

Best,
James

0 Votes 0 ·
JamesHamil-MSFT avatar image
0 Votes"
JamesHamil-MSFT answered ·

Hi @AmitaJain-4101 , I talked to the content author and it seems that the configuration is very error prone; you need to sign the secret exactly right or else it won't work. I was also given a troubleshooting guide for this document. We were able to get this to work on our end, so please make sure you're doing each step correctly. Please let me know if you get any specific errors as well. If it still doesn't work we can set you up with a free support request to look into it for you! I hope this helps.

If this answer helped you, please mark it as "Verified" so other users may reference it.

Thank you,
James


· 2 ·
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Thanks James. I rechecked everything from your Troubleshoot guide.

I am getting Signature verified from jwt debugger

I tried to send req for the apple auth2 like below:
https://appleid.apple.com/auth/authorize?client_id=com.movechair.anybody.serviceid&response_type=code&redirect_uri=https%3A%2F%2FMoveChairB2C.b2clogin.com%2FMoveChairB2C.onmicrosoft.com%2Foauth2%2Fauthresp

It goes successfully, but below req gives me error : Invalid_client.
POST: "https://appleid.apple.com/auth/token"
{
"client_id":"com.movechair.anybody.serviceid",
"client_secret": "eyJra......-WJw",
"grant_type": "authorization_code",
"code": "749bc6649eab481686d3bba22457158f.0.rwtv.rDm-RfIEImf-86zzPjDmow",
"redirect_url": "https://MoveChairB2C.b2clogin.com/MoveChairB2C.onmicrosoft.com/oauth2/authresp"
}

It will be great if we could have a support call.
- Amita

0 Votes 0 ·

screenshot of the jwt debugger .
74157-screenshot-2021-03-04-at-10730-pm.png


-Amita

0 Votes 0 ·