Unverified Commit 4f6b6590 authored by Simon Esposito's avatar Simon Esposito Committed by GitHub
Browse files

Fix Apple Sign In issue (#642) 

Remove jwt aud field validation - the field is set to client_id for web sign in as opposed to the bundle_id for app sign ins.

Resolves #618
parent cfd66b8d

social/social.go

+2 −2
Original line number Diff line number Diff line
@@ -675,9 +675,9 @@ func (c *Client) CheckAppleToken(ctx context.Context, bundleId string, idToken s 
		}



		// Verify the audience matches the configured client ID.

		if !claims.VerifyAudience(bundleId, true) {

		/*if !claims.VerifyAudience(bundleId, true) {

			return nil, fmt.Errorf("unexpected audience: %v", claims["aud"])

		}

		}*/



		return cert.key, nil

	})