LukeParke/better-auth
1
0
Fork 0
mirror of https://github.com/LukeHagar/better-auth.git synced 2025-12-10 04:19:32 +00:00
Code Issues Packages Projects Releases Wiki Activity

feat: support multiple aud for apple oauth (#3710)

Browse Source 
* support multiple aud

* update

* update

* changeset
This commit is contained in:
KinfeMichael Tariku
2025-08-01 18:10:57 +03:00
committed by GitHub
parent 3225926889
commit c726753e69
2 changed files with 12 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
.changeset/strong-points-admire.md Normal file
View File

@@ -0,0 +1,5 @@
---
"better-auth": patch
---
feat: support for multiple aud for apple oauth

8
packages/better-auth/src/social-providers/apple.ts
View File

@@ -70,6 +70,7 @@ export interface AppleNonConformUser {
export interface AppleOptions extends ProviderOptions<AppleProfile> { export interface AppleOptions extends ProviderOptions<AppleProfile> {
appBundleIdentifier?: string; appBundleIdentifier?: string;
audience?: string;
} }
export const apple = (options: AppleOptions) => { export const apple = (options: AppleOptions) => {
@@ -116,7 +117,12 @@ export const apple = (options: AppleOptions) => {
const { payload: jwtClaims } = await jwtVerify(token, publicKey, { const { payload: jwtClaims } = await jwtVerify(token, publicKey, {
algorithms: [jwtAlg], algorithms: [jwtAlg],
issuer: "https://appleid.apple.com", issuer: "https://appleid.apple.com",
audience: options.appBundleIdentifier || options.clientId, audience:
options.audience && options.audience.length
? options.audience
: options.appBundleIdentifier
? options.appBundleIdentifier
: options.clientId,
maxTokenAge: "1h", maxTokenAge: "1h",
}); });
["email_verified", "is_private_email"].forEach((field) => { ["email_verified", "is_private_email"].forEach((field) => {