All Devices Sign In With Apple - Supported Apps & Sites

[ipedro]

I can't believe yelp hasn't added it yet, although I'd rather Apple Maps remove their yelp integration entirely.

Same with OneTable. Like Yelp, it’s a longtime core integration into iOS. Heck, even Apple’s own app Shazam doesn’t have it but has Facebook.



I’m with you on wishing Yelp were taken out of iOS. I’d much prefer FourSquare but really, Apple Maps should have its own ability to rate and review restaurants as well enable owners and customers to add photos. Like Steve Jobs said about Dropbox, “this is a feature, not an entire app”.

 

[ipedro]

I was going to pull the trigger the other week on our implementation... but now we're so close to WWDC, I wonder if we should just wait to see if anything changes. The web-interaction isn't ideal.

I think it’s very likely that Sign In With Apple progresses in iOS 14. Moving to focusing on websites after apps have adopted it is low hanging fruit.

I could also see stricter privacy requirements as some apps like Pinterest have found a loophole and don’t let you hide your email while other apps have been able to switch off Sign In With Apple remotely, even though it has passed App Store Review previously. I’m sure Apple will address those pretty quickly.

Further down the line, there’s a lot of potential for using Sign In With Apple with Face ID to verify that the user who signed up is a) a real person and b) the same one that signed up originally. Weeding out bots and fake accounts and preventing trolls from having multiple accounts even after they’re banned, is a highly desirable feature for websites, MacRumors included.

Another potential use: Twitter could give verified humans signed in with Apple and Face ID a check mark which would enable all users to filter out unverified accounts. That would instantly clean up the majority of twitter because Russian bot factories don’t have faces.

Sign In With Apple is just getting started.

 

[valdikor]

After all, in a matter of just 20 days, EVERY APP in the App Store with social sign ins will have to support Sign In With Apple.

Not necessarily. All app updates (and new apps) submitted after June 30th have to implement SIWA if they support social sign in. That means that if an app is not updated, it will continue to function as is. It’s not like apps without SIWA will be removed from the App Store on July 1st.

I can also imagine a scenario where an app that is in to rush to add SIWA issues a planned update just before the deadline and will be all set until they necessarily need to update the app again later this year.

I just added QuizUp to the outstanding apps list. They update their app just a few times a year and I would not be surprised if they went this route for now.

Something like Fortnite is another matter. Epic updates the game all the time and they may get their app update rejected by Apple if they don’t implement SIWA by June 30th. Actually, I think it’s completely imaginable this will happen. Then, Epic will take it to the media and complain about Apple’s monopolistic practices. See their complaints about Google and Play Store recently.

 

[ipedro]

Not necessarily. All app updates (and new apps) submitted after June 30th have to implement SIWA if they support social sign in. That means that if an app is not updated, it will continue to function as is. It’s not like apps without SIWA will be removed from the App Store on July 1st.

I can also imagine a scenario where an app that is in to rush to add SIWA issues a planned update just before the deadline and will be all set until they necessarily need to update the app again later this year.

Right, I’ve mentioned throughout this thread that active apps would inevitably have to add Sign In With Apple while apps whose developers haven’t submitted updates will stay as they are.

Every app that I’ve been following in the “Top Outstanding Apps” list has been getting frequent updates and won’t just stop suddenly after June 30th just to avoid adding Sign In With Apple. At best, many apps will have to update in the Fall as iOS 14 arrives since it’s likely to break existing apps in even small ways as major iOS updates tend to do.

When we pass June 30th, we’ll have passed an important threshold as every update we see from that point on will bring Sign In With Apple to apps that had Facebook or other social sign ins.

 

[ipedro]

Lime has added Sign In With Apple

 

[ipedro]

Evite now has Sign In With Apple!



It was in our “Top Outstanding Apps” list and has now been moved to “Available”.

Evite allows you to hide your real email address through Sign In With Apple but given that this is an app where your friends and family will be emailing you invites to your real address, you may want to make your real email known.

It’s easy to merge your existing Evite account into Sign In With Apple. If your Apple ID email isn’t the one used in your Evites account, go to Evite.com, then into account settings and add your Apple ID email as one of your Evite emails. Then go into the app and Sign In With Apple and make your email known. It’ll seamlessly merge them.

Tip 1: To maintain your cross site privacy, on the Evite site, under Data Privacy, you may want to check this box. It’s unchecked by default.



Tip 2: Sign In With Apple is also available on the Evite website. So unless you’re managing a lot of invitations, you can delete the app and Sign In With Apple on the site whenever you get invites.

 

[ipedro]

It just occurred to me that Sign In With Apple will be terrible for families that share iPads. An iPad uses one Apple ID so if someone else in the family wanted to log into an app with their credentials, Signing In With Apple will log them in via the Apple ID on the iPad and there’s no way around that.

This really makes it important for Apple to introduce accounts on iPadOS. It’s long overdue.

 

[chris4565]

Oh man, you're right, didn't even think of that yet. Hopefully WWDC will bring some new features in this regard 👍

 

[ipedro]

Oh man, you're right, didn't even think of that yet. Hopefully WWDC will bring some new features in this regard 👍

Since Sign In With Apple verifies you through Face ID or Touch ID, it could be as straight forward as recognizing who is asking to sign in and entering their credentials. But yes, Apple has to deal with this in iOS 14, if not earlier.

 

[uniquexoxo]

Asia’s biggest online shopping platform, LAZADA, has now integrated SIWA.

 

[Apple_Robert]

I was going to pull the trigger the other week on our implementation... but now we're so close to WWDC, I wonder if we should just wait to see if anything changes. The web-interaction isn't ideal.

Will the SIWA option do away with the 2FA code option every 30 days?

 

[ipedro]

I just can’t believe how stubborn some of these major apps are. Quora, Expedia, Yelp, B&H, OpenTable, Evernote and Duolingo updated their apps, still without Sign In With Apple, with just a couple of weeks left until the deadline. I guess they’re milking our data for as long as they can (not me, I deleted my accounts months ago).

 

[arn]

Will the SIWA option do away with the 2FA code option every 30 days?

I don't believe it would affect it.

 

[akash.nu]

I just can’t believe how stubborn some of these major apps are. Quora, Expedia, Yelp, B&H, OpenTable, Evernote and Duolingo updated their apps, still without Sign In With Apple, with just a couple of weeks left until the deadline. I guess they’re milking our data for as long as they can (not me, I deleted my accounts months ago).

Add VSCO to that list as well.

 

[JPNMac]

I can't believe the number of apps that now use Sign in with Apple. Now with more apps adding Sign in with Apple, I'd expect less setting up accounts and more security with this new feature.

How about also adding a list of websites that use Sign in with Apple too?

 

[ipedro]

I can't believe the number of apps that now use Sign in with Apple. Now with more apps adding Sign in with Apple, I'd expect less setting up accounts and more security with this new feature.

How about also adding a list of websites that use Sign in with Apple too?

Good idea. You're welcome to take that on by adding to the wiki.

I’m personally looking forward to after June 30th and just knowing that every app that has social sign ins will have to have Sign In With Apple. I guess I’ll keep tracking until major apps have had their updates as some might take some time after June 30th.

While sites aren’t mandatory like apps are, each site with an app will have to also provide a way for their users who signed up with Apple to sign in on their website. And over time, with that kind of critical mass, it’s just going to become an expected form of signing in, like Facebook did.

 

[ipedro]

Yelp!


This is of course a big one, possibly the top anticipated app to get Sign In With Apple. Yelp is built into iOS through Apple Maps and Siri and users who didn’t want to give up their privacy were forced to miss out on Maps features. No more!

Yelp has enabled both hiding email as well as merging existing accounts into Sign In With Apple. I’m choosing to delete my old account and start a new anonymous account.

 

[kylew1212]

Yelp!

View attachment 924367
This is of course a big one, possibly the top anticipated app to get Sign In With Apple. Yelp is built into iOS through Apple Maps and Siri and users who didn’t want to give up their privacy were forced to miss out on Maps features. No more!

Yelp has enabled both hiding email as well as merging existing accounts into Sign In With Apple. I’m choosing to delete my old account and start a new anonymous account.

Awesome! Great find! I deleted my yelp account a few weeks ago in anticipation of this.

 

[ipedro]

Update: Yelp is doing something devious. Even after I’ve deleted my Yelp account in Safari, then even after deleted the app (!!) and even when I Sign up with Apple hiding my email (!!!), it still surfaces my old account! This of course gives them my original email and allows them to track my Yelp activity and sell my data to Facebook and other advertisers.

Are they using an identifier? Is an iPhone serial exposed to apps? Cached data? I’ve deleted my Yelp Sign In With Apple account, deleted the app, reset my Advertising identifier, and I’m restarting my iPhone to dump anything that might still be held on, and it *still* finds my old account that was supposedly deleted.

 

[uniquexoxo]

I just can’t believe how stubborn some of these major apps are. Quora, Expedia, Yelp, B&H, OpenTable, Evernote and Duolingo updated their apps, still without Sign In With Apple, with just a couple of weeks left until the deadline. I guess they’re milking our data for as long as they can (not me, I deleted my accounts months ago).

my partner works as a manager for Expedia groups, and he says Expedia may not integrate SIWA, as of talk in their office so far. However, me a fraud and risk analyst, I would understand if Expedia will not adapt to it as email address is an important part of fraud and risk process and investigation, so using real email address that matches bank records is important.

 

[ipedro]

my partner works as a manager for Expedia groups, and he says Expedia may not integrate SIWA, as of talk in their office so far. However, me a fraud and risk analyst, I would understand if Expedia will not adapt to it as email address is an important part of fraud and risk process and investigation, so using real email address that matches bank records is important.

Well, they kind of have no choice. They'll have to get rid of Google and Facebook sign ins if they don't want to include Sign In With Apple.

If they were so worried about fraud, they've had no problem having those other social sign ins which anybody can start hundreds of fake accounts for. At least Sign In With Apple is tied into a real iPhone/iPad/Mac and an Apple ID which a legal investigation would have access to under a court order.

I'd think that if they want to avoid fraud in travel purchases, use the one travel document that is inherently secure: a passport and a real name can be cross referenced with government databases that travel companies have access to through Sabre, the industry software used to book travel.

 

[akash.nu]

Update: Yelp is doing something devious. Even after I’ve deleted my Yelp account in Safari, then even after deleted the app (!!) and even when I Sign up with Apple hiding my email (!!!), it still surfaces my old account! This of course gives them my original email and allows them to track my Yelp activity and sell my data to Facebook and other advertisers.

Are they using an identifier? Is an iPhone serial exposed to apps? Cached data? I’ve deleted my Yelp Sign In With Apple account, deleted the app, reset my Advertising identifier, and I’m restarting my iPhone to dump anything that might still be held on, and it *still* finds my old account that was supposedly deleted.

Many apps use either first party or third party algorithms to generate device ID for various reasons. This is not devious. In terms of cached account data, yes that is possible and may have been over looked while developing the app. See if uninstalling the app helps. If the account related data is stored in the NSUserDefaults then it should get removed.

 

[uniquexoxo]

Well, they kind of have no choice. They'll have to get rid of Google and Facebook sign ins if they don't want to include Sign In With Apple.

If they were so worried about fraud, they've had no problem having those other social sign ins which anybody can start hundreds of fake accounts for. At least Sign In With Apple is tied into a real iPhone/iPad/Mac and an Apple ID which a legal investigation would have access to under a court order.

I'd think that if they want to avoid fraud in travel purchases, use the one travel document that is inherently secure: a passport and a real name can be cross referenced with government databases that travel companies have access to through Sabre, the industry software used to book travel.

in my experience in the field, I’ve handled cases were the traveller’s name, manifesto, and/or bag tags did not match with the person’s bank name and or passport. In short, there’s a small percentage of mismatch information and still being allowed to check in and board (I will not drop airline names, but all are US airlines 😉) that is why email address, I.P, and history are fallback. I believe when you sign up via social apps, you are still required to input an email address to send your itinerary and by using SIWA, you eliminate the step of the email address because Apple would already provide it. There’s an algorithm involved that is calibrated and centralized in all banks worldwide when it comes to fraud and risk, it’s basically black and white once Network such as VISA, MC, AmEx etc., gets involved. A small mismatch in the information provided by Airlines incase of any bank dispute, even the difference of 1 single letter in the name, can cause an overrule by the disputing bank that leads to financial loss to the airline.

example:
email used on their flight: abcde@gmail.co
bank records: abcde@gmail.com
result: overrule by disputing bank. documents from airline is rejected and the bank will continue its dispute

in which most cases, airlines will just accept the financial loss.

Just a little background on how fraud and risk works 🤣🤣 so i’m all for it if they will not adapt to SIWA. It will cause me additional work in the coming future 😂😂 jk

 

[ipedro]

Many apps use either first party or third party algorithms to generate device ID for various reasons. This is not devious. In terms of cached account data, yes that is possible and may have been over looked while developing the app. See if uninstalling the app helps. If the account related data is stored in the NSUserDefaults then it should get removed.

I’ll argue that it is objectively devious. They’re using my device ID to link me to an old account that I deleted and when I’ve clearly indicated in my Sign In With Apple sign up that I would like to have an anonymous account. When signing up, I’ve deliberately not given them my email, yet, they’ve gone into their records, determined that I had a previous account and linked my previously known email to the account that I signed up as anonymous so that they can continue to track me and sell my activity data. If that’s not the textbook definition of “devious”, I don’t know what is.

 

[akash.nu]

I’ll argue that it is objectively devious. They’re using my device ID to link me to an old account that I deleted and when I’ve clearly indicated in my Sign In With Apple sign up that I would like to have an anonymous account. When signing up, I’ve deliberately not given them my email, yet, they’ve gone into their records, determined that I had a previous account and linked my previously known email to the account that I signed up as anonymous so that they can continue to track me and sell my activity data. If that’s not the textbook definition of “devious”, I don’t know what is.

In a lot of companies this specifically is treated as a feature so that people who may have forgotten that they had an older account do not end up paying multiple subscription for the same thing. It just depends on business models and what they do with the device ID. Without knowing their internal working you’re just assuming they are tracking you deviously.