go-verify-apple-id-token

This repository is inspired by verify-apple-id-token

Feature

Small utility which verifies the Apple idToken
You can use it on the backend side
Token verification is part of Apple sign-in process
The flow is
- Client app (iOS or Android) will redirect user to the OAuth2 login screen
- User will login
- App will receive the tokens
- App should send the idToken to the backend which will verify it
Verification steps implemented:
- Verify the JWS E256 signature using the server’s public key
- Verify the nonce for the authentication
- Verify that the iss field contains https://appleid.apple.com
- Verify that the aud field is the developer’s client_id
- Verify that the time is earlier than the exp value of the token

Installation

go get github.com/coolishbee/go-verify-apple-id-token

Usage

import(
    "github.com/coolishbee/go-verify-apple-id-token"
)

var idToken = ""

func main() {
	client := apple.New()

	jwtClaims, err := client.VerifyIdToken("clientId", idToken)
	if err != nil {
        fmt.Println(err)
	} else {
		fmt.Println(jwtClaims.Email)
	}
}

Name		Name	Last commit message	Last commit date
Latest commit History 5 Commits
apple		apple
.gitignore		.gitignore
LICENSE		LICENSE
README.md		README.md
go.mod		go.mod
go.sum		go.sum

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

go-verify-apple-id-token

Feature

Installation

Usage

About

Releases

Packages

Languages

License

coolishbee/go-verify-apple-id-token

Folders and files

Latest commit

History

Repository files navigation

go-verify-apple-id-token

Feature

Installation

Usage

About

Resources

License

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages