habsi/authentik
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
6d5172d18ad1f28f66ea88d7090a5795912cdef5
authentik/website/docs/users-sources/sources/social-logins/apple/index.md
Tana M Berry 6d5172d18a website: latest PR for new Docs structure (#11639) 
* first pass

* dependency shenanigans

* move blueprints

* few broken links

* change config the throw errors

* internal file edits

* fighting links

* remove sidebarDev

* fix subdomain

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fix relative URL

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fix mismatched package versions

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* fix api reference build

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* test tweak

* links hell

* more links hell

* links hell2

* yep last of the links

* last broken link fixed

* re-add cves

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* add devdocs redirects

* add dir

* tweak netlify.toml

* move latest 2 CVES into dir

* fix links to moved cves

* typoed title fix

* fix link

* remove banner

* remove committed api docs

Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>

* integrations: remove version dropdown

Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>

* Update Makefile

Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>

* change doc links in web as well

Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>

* fix some more docs paths

Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>

* fix more docs paths

Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>

* ci: require ci-web.build for merging

Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>

* Revert "ci: require ci-web.build for merging"

This reverts commit b99a4842a9.

* remove sluf for Application

* put slug back in

* minor fix to trigger deploy

* Spelled out Documentation in menu bar

* remove image redirects...

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* remove explicit index.md

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* remove mdx first

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* then remove .md

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* add missing prefix

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

---------

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
Signed-off-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
Co-authored-by: Tana M Berry <tana@goauthentik.com>
Co-authored-by: Jens Langhammer <jens@goauthentik.io>
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
2024-10-09 09:33:40 -05:00

2.6 KiB
Raw Blame History

title
title
Apple

Support level: authentik

Allows users to authenticate using their Apple ID.

Preparation

:::caution An Apple developer account is required. :::

:::caution Apple mandates the use of a registered TLD, as such this source will not work with .local and other non-public TLDs. :::

The following placeholders will be used:

  • authentik.company is the FQDN of the authentik install.

Apple

  1. Log into your Apple developer account, and navigate to Certificates, IDs & Profiles, then click Identifiers in the sidebar.
  2. Register a new Identifier with the type of App IDs, and the subtype App.
  3. Choose a name that users will recognise for the Description field.
  4. For your bundle ID, use the reverse domain of authentik, in this case company.authentik.
  5. Scroll down the list of capabilities, and check the box next to Sign In with Apple.
  6. At the top, click Continue and Register.

  1. Register another new Identifier with the type of Services IDs.
  2. Again, choose the same name as above for your Description field.
  3. Use the same identifier as above, but add a suffix like signin or oauth, as identifiers are unique.
  4. At the top, click Continue and Register.

  1. Once back at the overview list, click on the just-created Identifier.
  2. Enable the checkbox next to Sign In with Apple, and click Configure
  3. Under domains, enter authentik.company.
  4. Under Return URLs, enter https://authentik.company/source/oauth/callback/apple/.

  1. Click on Keys in the sidebar. Register a new Key with any name, and select Sign in with Apple.
  2. Click on Configure, and select the App ID you've created above.
  3. At the top, click Save, Continue and Register.
  4. Download the Key file and note the Key ID.

  1. Note the Team ID, visible at the top of the page.

authentik

  1. Under Directory -> Federation & Social login Click Create Apple OAuth Source

  2. Name: Apple

  3. Slug: apple

  4. Consumer Key: The identifier from step 9, then ;, then your Team ID from step 19, then ;, then the Key ID from step 18.

    Example: io.goauthentik.dev-local;JQNH45HN7V;XFBNJ82BV6

  5. Consumer Secret: Paste the contents of the keyfile you've downloaded

Save, and you now have Apple as a source.

:::note For more details on how-to have the new source display on the Login Page see here. :::