This repository provides details on how to invalidate the apple access token based on LoginRadius AccountDeletion webhook event response https://www.loginradius.com/docs/integrations/webhook/.
This respository provides a (POST) API endpoint which accepts the LoginRadius AccountDeletion webhook event response.
For the Sample AccountDeletion webhook event response please see: https://www.loginradius.com/docs/integrations/webhooks/samples/#deleteaccount9
To get AccountDeletion webhook event response on your URL, please configured it from the LoginRadius Admin Console: https://www.loginradius.com/docs/api/v2/integrations/webhooks/overview/#configurewebhook7
Run this command to install the required dependency.
npm install Create a .env file in root directory and add following constants
- Create an environment variable
client_idand add the apple client_id, which will be used in apple revoke token API call. - Create an environment variable
client_secretand add the apple client_secret, which will be used in apple revoke token API call. For insights on how to create apple client_secret, please see https://github.com/LoginRadius/apple-client-secret-generator
e.g
Run this command to start the server
npm startThis Api revokes the apple access token received from the user profile
http://localhost:3000/api/webhook
Sample respone:
{
"description": "",
"statusCode": 200
}
Note: On success, Apple only returns HTTP code as 200 and does not return any success message/description{
"message": "{\"error\":\"invalid_client\"}",
"description": "",
"statusCode": 400,
"stackTrace": "Error: got 400 response\n at generateErrorMessage ....."
}
Note: It signifies Apple provided `client_id` and `client_secret` are incorrect/expired.Note: this script consider your apple social provide name as apple, if for your LoginRadius App, apple social provider is configured with different name e.g apple_brand1 then please replace the same in the /api/webHookController.js file. ScreenShot reference:
