Sign in with Apple
Add Apple as an OAuth provider (Sign in with Apple).
You need an Apple Developer account and an Apple Developer Program membership.
Step 1: Configure App ID
Create a new App ID or configure an existing one, and ensure Sign in with Apple is enabled for it.
Step 2: Create a Services ID
Next, create a new identifier, making sure to select the Services IDs type. (The Identifier you set here will be your Client ID in Hanzo IAM).
Then, configure this Services ID. Enable Sign in with Apple and click Configure.
Step 3: Configure Redirect URLs
In the configuration screen, set up the Return URLs (callback URLs). You need to enter the Redirect URL shown on the Hanzo IAM provider page here.
:::info Set Return URLs Correctly
The Return URLs on Apple must exactly match the Redirect URL shown on your Hanzo IAM Apple provider configuration page (e.g., https://your-iam-domain.com/callback).
:::
Step 4: Create a Key
After configuring the Services ID, create a Key. When creating the Key, enable Sign in with Apple and associate it with your App ID.
After registering the Key, note down the Key ID and download the .p8 file immediately. (This file can only be downloaded once, save it securely!)
Important: Find and note down your Team ID from the Membership page on the Apple Developer Portal.
Step 5: Add the provider in Hanzo IAM
- Client ID — The Services ID (Identifier) you created in Step 2.
- Team ID: Enter your Apple Team ID (found on the Membership page).
- Key ID: Enter the Apple Key ID you noted down.
- Key Text: Open the downloaded
.p8file with a text editor. Copy its entire content (including the-----BEGIN...and-----END...lines) and paste it here. - Check Redirect URL: Verify that the
Redirect URLshown here in Hanzo IAM has been correctly added to the Return URLs in your Apple Services ID configuration.
How is this guide?
Last updated on