avatarYi 🐍🐏

Free AI web copilot to create summaries, insights and extended knowledge, download it at here

2428

Abstract

igcaption></figure><figure id="7fc4"><img src="https://cdn-images-1.readmedium.com/v2/resize:fit:800/1*syzDAcHjde_ieRLD7qW29Q.png"><figcaption></figcaption></figure><p id="adf4">4. Probably after a few seconds, refresh current page, you could see a <b>Download API Key</b> option at the end of row, where newly created key is. Download it and keep in mind: you want to save it in a very good place, where you would never forget, since this .p8 file has your private key. This private key will be your “<b>secret</b>” to access with API.</p><h1 id="8719">Import JWTKit to your Project:</h1><ol><li>Open “Add Packages” option for your project:</li></ol><figure id="4bf2"><img src="https://cdn-images-1.readmedium.com/v2/resize:fit:800/1*rPcfpCzEquS3bBxT_QqO-Q.png"><figcaption></figcaption></figure><p id="16f2">2. In the Add Packages dialog, paste <a href="https://github.com/vapor/jwt">link to the JWTKit GitHub</a> in the search field at the top right corner.</p><figure id="52cf"><img src="https://cdn-images-1.readmedium.com/v2/resize:fit:800/1*LUfkrFNYIggBGkCElgzeDg.png"><figcaption></figcaption></figure><p id="f300">3. Click <b>Add Package</b>, to add it to your project.</p><h1 id="0799">Work with Code:</h1><p id="7689">A JWT generator requires information of Header and Payload.</p><ol><li>In Header, it indicates the Key ID and encryption algorithm.</li><li>In Payload, based on the requirement of Apple, it needs Issuer ID, Expiration time and Audience, with corresponding parameter names: iss, exp and aud.</li></ol> <figure id="04a2"> <div> <div>

            <iframe class="gist-iframe" src="/gist/antonio081014/93e9b8b67cf033184e13c38cc3493451.js" allowfullscreen="" frameborder="0" height="undefined" width="undefined">
          </div>
        </div>
    </figure></iframe></div></div></figure><p id="31ad">3. At the end of code file, we also demonstrate how to test the generated JWT with a <b>curl</b> request, which will return a list of apps with detailed infos in JSON format.</p><h1 id="890d">Verification of JWT</h1><p id="69b8">On <a href="https://jwt.io/">https://jwt.io/</a>. The verification could be done by simply pasting JWT string in <b>Encoded</b> field, It’s easy to see if all the HEADER and PAYLOAD data are correct.</p><p id="34be">Thanks for reading. Happy Coding.</p><h1 id="c41f">Reference:</h1><div id="e608" class="link

Options

-block"> <a href="https://developer.apple.com/documentation/appstoreconnectapi/generating_tokens_for_api_requests"> <div> <div> <h2>Apple Developer Documentation</h2> <div><h3>Generating Tokens for API Requests</h3></div> <div><p>developer.apple.com</p></div> </div> <div> <div style="background-image: url(https://miro.readmedium.com/v2/resize:fit:320/)"></div> </div> </div> </a> </div><div id="9f37" class="link-block"> <a href="https://developer.apple.com/documentation/appstoreconnectapi/creating_api_keys_for_app_store_connect_api"> <div> <div> <h2>Apple Developer Documentation</h2> <div><h3>Creating API Keys for App Store Connect API</h3></div> <div><p>developer.apple.com</p></div> </div> <div> <div style="background-image: url(https://miro.readmedium.com/v2/resize:fit:320/)"></div> </div> </div> </a> </div><div id="4e5b" class="link-block"> <a href="https://jwt.io/"> <div> <div> <h2>JWT.IO</h2> <div><h3>JSON Web Token (JWT) is a compact URL-safe means of representing claims to be transferred between two parties. The…</h3></div> <div><p>jwt.io</p></div> </div> <div> <div style="background-image: url(https://miro.readmedium.com/v2/resize:fit:320/0*xJ086diRPKEswsAJ)"></div> </div> </div> </a> </div><div id="164c" class="link-block"> <a href="https://github.com/vapor/jwt-kit"> <div> <div> <h2>GitHub - vapor/jwt-kit: 🔑 JSON Web Token signing and verification (HMAC, RSA, ECDSA) using…</h2> <div><h3>🔑 JSON Web Token signing and verification (HMAC, RSA, ECDSA) using BoringSSL. - GitHub - vapor/jwt-kit: 🔑 JSON Web…</h3></div> <div><p>github.com</p></div> </div> <div> <div style="background-image: url(https://miro.readmedium.com/v2/resize:fit:320/0*eXWIPq1IYigxVO2I)"></div> </div> </div> </a> </div></article></body>

Generating JWT for AppStore Connect API with JWTKit in Swift

Photo by Zhiyue Xu on Unsplash

AppStore Connect API is very welcomed since its debut in 2018 WWDC. Variety of automation tools has adopted this wonderful API to help saving developer lot of time and redundant work. But, to access data through this API, authentication is required for the purpose of safety and security.

So, this article will focus on how to access the API with authentications.

In the video of WWDC 2018 Session 303: Automating App Store Connect, the presenter introduced the AppStore Connect API with data structure of API’s request and response. At last, a JWT was generated by using Ruby in command line with given parameters. It’s cool, but how can we do it in Swift, or in the app where you could not use Ruby in command line?

Basically, we need to:

  1. Generate AppStore Connect API Key, and download it.
  2. Import JWTKit into your project
  3. Using JWTKit with API Key and other infos.

Before we just into the code, we need to get Access API Key. So,

  1. Go to link of AppStoreConnect. Under “Keys” tab, click “+” blue icon.

2. Name the key and choose the proper access option. Then, click Generate. PS: Access option could be Admin, Developer, or Finance, etc. It grants different scope of access, so choose it wisely.

3. Now, you could see Issuer ID and Key ID, these will be used soon.

4. Probably after a few seconds, refresh current page, you could see a Download API Key option at the end of row, where newly created key is. Download it and keep in mind: you want to save it in a very good place, where you would never forget, since this .p8 file has your private key. This private key will be your “secret” to access with API.

Import JWTKit to your Project:

  1. Open “Add Packages” option for your project:

2. In the Add Packages dialog, paste link to the JWTKit GitHub in the search field at the top right corner.

3. Click Add Package, to add it to your project.

Work with Code:

A JWT generator requires information of Header and Payload.

  1. In Header, it indicates the Key ID and encryption algorithm.
  2. In Payload, based on the requirement of Apple, it needs Issuer ID, Expiration time and Audience, with corresponding parameter names: iss, exp and aud.

3. At the end of code file, we also demonstrate how to test the generated JWT with a curl request, which will return a list of apps with detailed infos in JSON format.

Verification of JWT

On https://jwt.io/. The verification could be done by simply pasting JWT string in Encoded field, It’s easy to see if all the HEADER and PAYLOAD data are correct.

Thanks for reading. Happy Coding.

Reference:

Swift
Jwt
Appstore Connect
API
Sales Report
Recommended from ReadMedium
avatarAlexander Nguyen
The resume that got a software engineer a $300,000 job at Google.

1-page. Well-formatted.

4 min read
avatarAndrew Zuo
Async Await Is The Worst Thing To Happen To Programming

I recently saw this meme about async and await.

5 min read
avatarDylan Smith
Interview: How to Check Whether a Username Exists Among One Billion Users?

My articles are open to everyone; non-member readers can read the full article by clicking this link.

6 min read
avatarOlenin Slava
Why Zig programmers are making so much money

Are you wondering why Zig programmers make so much money? Guess what? It is not what you are thinking.

4 min read
avatarAshish Pratap Singh
How I Mastered Data Structures and Algorithms

Getting good at Data Structures and Algorithms (DSA) helped me clear interviews at Amazon, Google and Microsoft.

6 min read
avatarSachin Siwal
How to Call APIs in Swift

Swift Networking Essentials: Using URLSession and URLRequest in iOS Apps

13 min read