ahilmurugesan / socialite-apple
Apple Socialite Login Provider with in-built Client Secret Generator and Manager
Installs: 1 418
Dependents: 0
Suggesters: 0
Security: 0
Stars: 1
Watchers: 3
Forks: 2
Open Issues: 0
Requires
- firebase/php-jwt: ^5.2
- laravel/socialite: ^4.0
- lcobucci/jwt: ^3.3
- socialiteproviders/manager: ^3.0
This package is auto-updated.
Last update: 2020-05-09 05:57:51 UTC
README
We are Happy to announce that SocialiteProvider - Apple package is officialy approved and added to Laravel Socialite. You can find them here https://packagist.org/packages/socialiteproviders/apple
Socialite - Apple
1. Installation
// This assumes that you have composer installed globally composer require ahilmurugesan/socialite-apple
2. Service Provider
-
Remove
Laravel\Socialite\SocialiteServiceProvider
from yourproviders[]
array inconfig\app.php
if you have added it already. -
Add
\SocialiteProviders\Manager\ServiceProvider::class
to yourproviders[]
array inconfig\app.php
.
For example:
'providers' => [ // a whole bunch of providers // remove 'Laravel\Socialite\SocialiteServiceProvider', \SocialiteProviders\Manager\ServiceProvider::class, // add ];
- Note: If you would like to use the Socialite Facade, you need to install it.
3. Event Listener
-
Add
SocialiteProviders\Manager\SocialiteWasCalled
event to yourlisten[]
array inapp/Providers/EventServiceProvider
. -
Add your listeners (i.e. the ones from the providers) to the
SocialiteProviders\Manager\SocialiteWasCalled[]
that you just created. -
The listener that you add for this provider is
'Ahilan\\Apple\\AppleExtendSocialite@handle',
. -
Note: You do not need to add anything for the built-in socialite providers unless you override them with your own providers.
For example:
/** * The event handler mappings for the application. * * @var array */ protected $listen = [ \SocialiteProviders\Manager\SocialiteWasCalled::class => [ // add your listeners (aka providers) here 'Ahilan\\Apple\\AppleExtendSocialite@handle', ], ];
Reference
4. Configuration Setup
You will need to add an entry to the services configuration file so that after config files are cached for usage in production environment (Laravel command artisan config:cache
) all config is still available.
Add to config/services.php
.
"apple" => [ "client_id" => env("APPLE_CLIENT_ID"), "client_secret" => env("APPLE_CLIENT_SECRET"), "redirect" => env("APPLE_REDIRECT_URI"), "key_id" => env("APPLE_KEY_ID"), "team_id" => env("APPLE_TEAM_ID"), "auth_key" => env("APPLE_AUTH_KEY"), "client_secret_updated_at" => env("APPLE_CLIENT_SECRET_UPDATED_AT"), "refresh_token_interval_days" => env("APPLE_REFRESH_TOKEN_INTERVAL_DAYS"), ],
To set up the required environment variables you can use the following artisan command which comes with this package.
php artisan socialite:apple
Please watch the following video to understand the flow to obtain the required Sign in with Apple credentials.
The command will prompt you the required values which can be acquired by following the setup video. You need to provide the following keys.
- Team ID
- Key ID
- Client ID
- Auth Key ( file name of p8 auth file, located inside storage/app/ ) Example: AuthKey_SAMPKEY.p8
- Redirect URI ( fully qualified secure callback url ) Example: https://website.com/socialite/apple/callback
- Token Refresh Interval ( in days )
Client Secret will be automatically generated and added to the .env file by using the above command.
The expiration time registered claim key, the value of which must not be greater than 15777000 (6 months in seconds) from the Current Unix Time on the server.
Sign in with Apple Client Secret expiration time cannot be greater than six months. Hence it is advisible to refresh the Client Secret atleast once in six months after creation. You can adjust the Token Refresh Interval. There is a scheduled task which comes along with this package which will ensure that the Client Token is refreshed automatically. Please do ensure that you have enabled Task Scheduling
To manually refresh the Client Secret, please run the following command
php artisan socialite:apple --refresh
5. Usage
-
You should now be able to use it like you would regularly use Socialite (assuming you have the facade installed):
// authorize with provider return Socialite::with('apple')->redirect(); // fetch user after callback $user = Socialite::with('apple')->user(); // fetch user using token ( token from apple authentication ) $token = "eyJraWQiOiJlWGF1bm1MIiwiYWxnIjoiUlMyNTYifQ.eyJpc3MiOiJodHRwczovL2FwcGxlaWQuYXBwbGUuY29tIiwiYXVkIjoiY29tLnZvbmVjLnNpd2EuYXBpIiwiZXhwIjoxNTg3OTI2MjAzLCJpYXQiOjE1ODc5MjU2MDMsInN1YiI6IjAwMTcxMC44NThkN2NhNWUwZDg0MWI5ODFiNGVkYWY2NWM0M2ZmNi4xOTMyIiwiYXRfaGFzaCI6IjRHZFprR0k2X2Q3Qk5xMFFJTkhKZEEiLCJlbWFpbCI6ImFoaWxtdXJ1Z2VzYW5AZ21haWwuY29tIiwiZW1haWxfdmVyaWZpZWQiOiJ0cnVlIiwiYXV0aF90aW1lIjoxNTg3OTI1NjAxLCJub25jZV9zdXBwb3J0ZWQiOnRydWV9.ciXdwwkySnG-Ne_l9NqxuLkDPyptUVvJ_Puk10LSsXNEtLBAijskQhIjwi3HYsEXNLdlbMGfJ25rnlMWu93RoqYJFo_u_rFjH_4Xt9E_ddnqY147yZvVw5k912FtXabQSl2bFiR7yrzuQvznxyAiYFP9v9HvXyTcYS2ki6ISdPjmTyb927yWyGDx-aigksV752toAA8XXmjjEyi01eY-wng4CaV4mxjJU_bQSpnh6zGLpmI-lxqBIfSbvW1ukMDh9VW7fIRq9l3yFba91TAT9oBv7QQVcEAU7jHNzKX3qU7JvCfr7d2UUXFVkOxYZFz1HuPHB5C9QuYn5TtFUb2ozw"; $user = Socialite::with('apple')->userFromToken($token));
Lumen Support
You can use Socialite providers with Lumen. Just make sure that you have facade support turned on and that you follow the setup directions properly.
Note: If you are using this with Lumen, all providers will automatically be stateless since Lumen does not keep track of state.
Also, configs cannot be parsed from the services[]
in Lumen. You can only set the values in the .env
file as shown exactly in this document. If needed, you can
also override a config (shown below).
Stateless
- You can set whether or not you want to use the provider as stateless. Remember that the OAuth provider (Twitter, Tumblr, etc) must support whatever option you choose.
Note: If you are using this with Lumen, all providers will automatically be stateless since Lumen does not keep track of state.
// to turn off stateless return Socialite::with('apple')->redirect(); // to use stateless return Socialite::with('apple')->stateless()->redirect();
Overriding a config
If you need to override the provider's environment or config variables dynamically anywhere in your application, you may use the following:
$clientId = "secret"; $clientSecret = "secret"; $redirectUrl = "http://yourdomain.com/api/redirect"; $additionalProviderConfig = ['site' => 'meta.stackoverflow.com']; $config = new \SocialiteProviders\Manager\Config($clientId, $clientSecret, $redirectUrl); return Socialite::with('apple')->setConfig($config)->redirect();
Retrieving the Access Token Response Body
Laravel Socialite by default only allows access to the access_token
. Which can be accessed
via the \Laravel\Socialite\User->token
public property. Sometimes you need access to the whole response body which
may contain items such as a refresh_token
.
You can get the access token response body, after you called the user()
method in Socialite, by accessing the property $user->accessTokenResponseBody
;
$user = Socialite::driver('apple')->user(); $accessTokenResponseBody = $user->accessTokenResponseBody;