Sign in with Apple doesn't redirect to iOS app

[connorlindsey]

Bug report

Describe the bug

I'm building a Capacitor app with Supabase and am including Google and Apple as auth providers. I also have a web application built with Next.js using the same Supabase instance.

When signing in to the mobile app with Google on iOS, the user successfully gets redirected back to the mobile app and logged in. When signing in with Apple, it redirects to the web app with the credentials in the URL instead of deep linking to the app (even though I'm using the same redirect to url for both providers).

I need to read up more on GoTrue, but maybe it has something to do with including the redirectTo in the callback url? The call to /authorize will include redirectTo but the callback is set statically.

To Reproduce

1. Configure Apple as an auth provider in Supabase (I know the Apple config works because users can sign into the web app successfully)
2. Configure deep links with Capacitor
3. In the app, the user signs in with Supabase await sb.auth.signIn({ provider: <apple or google> }, { redirectTo: "mysite.com/mobile" })
4. The web app ignores the session in the url and handles it manually if it's not going to the "mobile" url so it's not consuming the mobile credentials (supabaseClient = createClient(url, key, { detectSessionInUrl: false }))
5. Deep links are configured successfully and included in the Supabase auth configuration for additional redirect urls. If I copy the url that appears after signing in with Apple to another app like Notes and click it, it opens the mobile app and logs the user in which is the expected behavior.

Unfortunately I'm not sure of a great way to make a reproducible example given the amount of config that goes into setting up deep links + sign in with Apple.

Expected behavior

1. User clicks signs in with Apple
2. User authenticates with Apple
3. Redirect back to the mobile app
4. User is signed in

System information

• OS: iOS
• Version of supabase-js: 1.35.7

[kangmingtay]

hey @connorlindsey, can you please elaborate more on how this is being set up?

Configure deep links with Capacitor

Based on my understanding of Capacitor, it takes a URL and maps it to a mobile deep link. So clicking on a url like http://foo.app will open up the "foo" mobile app instead of a web page.

If I copy the url that appears after signing in with Apple to another app like Notes and click it, it opens the mobile app and logs the user in which is the expected behavior.

Also, does this mean that after the callback, the user gets redirected to the web app instead of the mobile app. However, the URL in the web app still shows http://foo.app instead of opening up the mobile app.

I'm not too familiar with Capacitor but it seems like it could be the cause of the issue - you might want to check when you are creating the listener and if it's created before or after the redirect happens.

[J0]

Hey,

I'm going to close this issue as it seems to have gone stale - feel free to reach back out if you have further questions though!

Jo

[connorlindsey]

Sorry, meant to follow up on this with more detail.

I was able to work around it by using Capacitor's apple sign in with apple package rather than Supabase's auth directly, then I signed in with oidc using the identity token from Capacitor's sign in with Apple.

[jack-hanlon]

@connorlindsey could you elaborate more on that ? I am currently stuck on the same problem