Hello guys wave skin tone 5 how are you doing I need help ag Ory Community #ory-selfhosting

Hello guys :wave::skin-tone-5: how are you doing? ...

gorgeous-helmet-33794

04/27/2023, 10:24 AM

Hello guys 👋🏾 how are you doing? I need help again 😞 I successfully configured Google and Discord sign-in. But when I am trying to configure Apple Sign In and followed this documentation https://developer.okta.com/blog/2019/06/04/what-the-heck-is-sign-in-with-apple. However, when I configure my yaml file:

Copy code

oidc:
  config:
    providers:
      - id: apple
        provider: apple
        client_id: "<http://xxx.xxxx.xxx|xxx.xxxx.xxx>"
        apple_team_id: "xxxxxxxxxx"
        apple_private_key_id: "xxxxxxxxxx"
        apple_private_key: |
          -----BEGIN PRIVATE KEY-----
          xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
          xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
          xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
          xxxxxxxx
          -----END PRIVATE KEY-----
        issuer_url: "<https://appleid.apple.com>"
        mapper_url: "file:///etc/config/apple.jsonnet"
        scope:
          - email

I get this error in Kratos.

Copy code

The configuration contains values or keys which are invalid:

I don't know what i am doing wrong 😔

✅ 1

bland-eye-99092

04/27/2023, 10:34 AM

what version of kratos are you on?

gorgeous-helmet-33794

04/27/2023, 10:35 AM

Copy code

Image:     oryd/kratos:v0.13.0

bland-eye-99092

04/27/2023, 10:40 AM

hm, kratos starts for me with that configuration.

Copy code

selfservice:
  methods:  
    oidc:
      config:
        providers:
          - id: apple
            provider: apple
            client_id: "<http://xxx.xxxx.xxx|xxx.xxxx.xxx>"
            apple_team_id: "xxxxxxxxxx"
            apple_private_key_id: "xxxxxxxxxx"
            apple_private_key: |
              -----BEGIN PRIVATE KEY-----
              xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
              xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
              xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
              xxxxxxxx
              -----END PRIVATE KEY-----
            issuer_url: "<https://appleid.apple.com>"
            mapper_url: "file:///etc/config/apple.jsonnet"
            scope:
              - email

bland-eye-99092

04/27/2023, 10:40 AM

I am guessing, that the values themselves don’t matter here.

👀 1

gorgeous-helmet-33794

04/27/2023, 10:43 AM

So I must have made another mistake in the YAML file, I'll take a closer look. Thank you for your explanation.

bland-eye-99092

04/27/2023, 10:45 AM

Though, the error is pretty weird, if that is the case. The only thing that comes to mind, is that we changed these keys a while back, but that was even before v0.11.1, IIRC. So that shouldn’t be an issue. Could you try, commenting out the other providers? See if that makes a difference.

gorgeous-helmet-33794

04/27/2023, 10:50 AM

Thanks to your explanations, I understood that the problem did not come from the secret key but from the configuration of my file. So, I looked at my make command and indeed I was adding properties that were not needed for Apple.

gorgeous-helmet-33794

04/27/2023, 10:55 AM

It's good, Apple Sign In works!

bland-eye-99092

04/27/2023, 10:57 AM

fantastic!

🙏🏾 1

65 Views

Open in Slack

Previous Next