Question

Changes to Apple SDK support

Apple has new guidelines for logging into applications - https://developer.apple.com/news/?id=09122019b

- All iOS apps will have to be built with the newest version of iOS SDK by April 2020. For this we should use Pega infinity mobile client, which offers OpenID Connect (OAuth Authorization Grant).

- Currently we are using OAuth ROPC grant for mobile app, which is not supported by Infinity mobile client.

We may not upgrade to Pega 8 anytime soon. Any ideas on how to handle this? Please let me know if any other details needed.

Comments

Keep up to date on this post and subscribe to comments

November 12, 2019 - 3:20am

Upgrade to Pega Infinity is the right step. By doing that you'll not only satisfy latest Apple requirements but also benefit from performance improvements and get access to latest features. 

November 18, 2019 - 9:36am
Response to Mateusz Pedzierski

Hi Mateusz,

   I understand that this might be the best long term approach. What are the impacts of not upgrading? As I read the link in the question - the changes are not mandatory if users require company specific logins. 

    "Sign in with Apple is not required if:

  • Your app exclusively uses your company’s own account setup and sign-in systems."

   What would the impact of not upgrading our builds to 8.3 mean - Our apps would stop working? Or we wouldn't be able to upload new versions of it going forward? 

Regards

Sid

Pega
November 18, 2019 - 9:54am
Response to SiddarthaM5997

Honestly, ROPC grant is the wrong authentication for an end-user client application.  OIDC with authorization code grant is the recommended best practice by NIST and other organizations for securing client applications in the wild.  Apple guidelines are targeting apps distributed through the App Store and who are not exclusively using their own organization-managed authentication.  If you fall into this category, you must move to Pega Infinity Mobile Client by April 2020, or Pega will not be able to support your app in the Apple App Store.

- James

November 25, 2019 - 1:02am
Response to HALLJ

Hi HallJ,

Thanks for your response. 

We are using our own organisation-managed authentication.  Does that mean Apple sdk support changes will not impact us even if we do not move to Pega Infinity Mobile Client? 

December 2, 2019 - 3:00am
Response to KalyaniK9826

While you don't need to worry about the Apple ID login requirement you still need to upgrade to Pega Infinity. Otherwise you'll not be able to publish any update to your app store application after March 2020.