Apple Developer News – Page 15

Posted on June 5, 2023 by — Leave a comment

What’s new in privacy on the App Store

At Apple, we believe privacy is a fundamental human right. That is why we’ve built a number of features to help users understand developers’ privacy and data collection and sharing practices, and put users in the driver’s seat when it comes to their data. App Tracking Transparency (ATT) empowers users to choose whether an app has permission to track their activity across other companies’ apps and websites for the purposes of advertising or sharing with data brokers. With Privacy Nutrition Labels and App Privacy Report, users can see what data an app collects and how it’s used.

Many apps leverage third-party software development kits (SDKs), which can offer great functionality but may have implications on how the apps handle user data. To make it even easier for developers to create great apps while informing users and respecting their choices about how their data is used, we’re introducing two new features.

First, to help developers understand how third-party SDKs use data, we’re introducing new privacy manifests — files that outline the privacy practices of the third-party code in an app, in a single standard format. When developers prepare to distribute their app, Xcode will combine the privacy manifests across all the third-party SDKs that a developer is using into a single, easy-to-use report. With one comprehensive report that summarizes all the third-party SDKs found in an app, it will be even easier for developers to create more accurate Privacy Nutrition Labels.

Additionally, to offer additional privacy protection for users, apps referencing APIs that could potentially be used for fingerprinting — a practice that is prohibited on the App Store — will now be required to select an allowed reason for usage of the API and declare that usage in the privacy manifest. As part of this process, apps must accurately describe their usage of these APIs, and may only use the APIs for the reasons described in their privacy manifest.

Second, we want to help developers improve the integrity of their software supply chain. When using third-party SDKs, it can be hard for developers to know the code that they downloaded was written by the developer that they expect. To address that, we’re introducing signatures for SDKs so that when a developer adopts a new version of a third-party SDK in their app, Xcode will validate that it was signed by the same developer. Developers and users alike will benefit from this feature.

We’ll publish additional information later this year, including:

A list of privacy-impacting SDKs (third-party SDKs that have particularly high impact on user privacy)
A list of “required reason” APIs for which an allowed reason must be declared
A developer feedback form to suggest new reasons for calling covered APIs
Additional documentation on the benefits of and details about signatures, privacy manifests, and when they will be required

Posted on June 5, 2023 by — Leave a comment

WWDC23 Overview

Join us for an exhilarating week of technology and community. Be among the first to learn the latest about Apple platforms, technologies, and tools. You’ll also have the opportunity to engage with Apple experts and other developers. All online and at no cost.

Experience WWDC here and on the Apple Developer website.

Keynote and State of the Union

The Apple Worldwide Developers Conference kicks off with exciting reveals and new opportunities. Join the developer community for an in-depth look at the future of Apple platforms, directly from Apple Park.

Keynote

The Apple Worldwide Developers Conference kicks off with exciting news, inspiration, and new opportunities. Join the worldwide developer community for an in-depth look at the future of Apple platforms, directly from Apple Park.

Watch now

Platforms State of the Union

Learn about the latest tools, technologies, and advancements to help you create even better apps across Apple platforms, including the all-new visionOS.

Watch now

Apple Design Awards

The Apple Design Awards celebrate apps and games that excel in the categories of Inclusivity, Delight and Fun, Interaction, Social Impact, Visuals and Graphics, and Innovation. Join us in congratulating this year’s finalists and winners.

June 5, 6:30 p.m. PT.

Explore the winners

Sessions

Learn how to create your most innovative apps and games yet by taking advantage of the latest updates on Apple platforms. New videos and transcripts will be posted daily from June 6 through 9. Watch on the web or in the Apple Developer app for iPhone, iPad, Mac, and Apple TV.

Learn more

Labs

Get one-on-one guidance from Apple engineers, designers, and other experts. Learn how to implement new Apple technologies, explore UI design principles, improve your App Store presence, and much more.

Learn more

Activities

Join Apple engineers, designers, and other experts for Q&As, Meet the Presenter, icebreakers, and more.

Learn more

Forums

Connect with the community on the Apple Developer Forums. Find WWDC23 content quickly and easily by searching conference-specific tags.

Learn more

Beyond WWDC

Discover even more opportunities for learning, networking, and fun outside of the conference.

Learn more

Stay connected

We’ll be posting WWDC announcements leading up to and during the conference.

Check your email settings in your Apple Developer account. Check your notification settings in the Account tab.

Watching session videos, viewing related documentation and sample code, and posting on the forums are available to anyone. To request a lab appointment or sign up for activities, you must be a current member of the Apple Developer Program or Apple Developer Enterprise Program, or a 2023 Swift Student Challenge applicant.

Posted on June 5, 2023 by — Leave a comment

Xcode 15 beta now available

The Xcode 15 beta supports the latest SDKs for iOS, iPadOS, macOS, tvOS, and watchOS. This version of Xcode helps you code and design your apps faster with enhanced code completion, interactive previews, and live animations. Use Git staging to craft your next commit without leaving your code. Explore and diagnose your test results with redesigned test reports with video recording. And start deploying seamlessly to TestFlight and the App Store from Xcode Cloud.

Learn more

Posted on June 5, 2023 by — Leave a comment

WWDC23 schedule and lab requests now available

Check out the session schedule to plan your week! Sessions will be posted daily and will include links to resources and forums tags. And you can now request one-on-one lab appointments to get your questions answered, whether you’re just starting out or need to solve an advanced issue.

Learn more

Posted on May 31, 2023 by — Leave a comment

Upcoming tax changes for apps, in-app purchases, and subscriptions

The App Store’s commerce and payments system was built to empower you to conveniently set up and sell your products and services at a global scale in 44 currencies across 175 storefronts. Apple administers tax on behalf of developers in over 70 countries and regions and provides you with the ability to assign tax categories to your apps and in‑app purchases. Periodically, we update your proceeds in certain regions based on changes in tax regulations.

On May 31, your proceeds from the sale of apps and in‑app purchases (including auto‑renewable subscriptions) will be adjusted to reflect the tax changes listed below. Prices will not change.

Ghana: Increase of the VAT rate from 12.5% to 15%.
Lithuania: Reduction of the VAT rate from 21% to 9% for eligible e‑books and audiobooks.
Moldova: Reduction of the VAT rate from 20% to 0% for eligible e‑books and periodicals.
Spain: Digital services tax of 3%.

Due to changes to tax regulations in Brazil, Apple now withholds taxes for all App Store sales in Brazil. We’ll administer the collection and remittance of taxes to the appropriate tax authority on a monthly basis. You can view the amount of tax deducted from your proceeds starting in June 2023 with your May earnings. Developers based in Brazil aren’t impacted by this change.

Once these changes go into effect, the Pricing and Availability section of My Apps will be updated in App Store Connect. As always, you can change the prices of your apps and in‑app purchases (including auto‑renewable subscriptions) at any time. And now you can change them for any storefront with 900 price points to choose from.

Posted on May 30, 2023 by — Leave a comment

Code new worlds

WWDC23 is almost here. We’ll be kicking off with the Apple Keynote on June 5 at 10:00 a.m. PT. Watch online at apple.com or in the Apple Developer app. You can even use SharePlay to watch with friends.

Activities are now open for sign-up for eligible developers. Designed to connect you with the developer community and Apple experts, they’ll feature Q&As, Meet the Presenters, and community icebreakers in online group chats.

Learn more

Posted on May 26, 2023 by — Leave a comment

Upcoming changes to the App Store receipt signing intermediate certificate

As part of ongoing efforts to improve security and privacy on Apple platforms, the App Store receipt signing intermediate certificate that’s used to verify the sale of apps and associated in‑app purchases is being updated to use the SHA‑256 cryptographic algorithm. This update will be completed in multiple phases and new apps and app updates may be impacted, depending on how they verify receipts.

What to expect

If your app verifies App Store transactions using the AppTransaction and Transaction APIs, or the verifyReceipt web service endpoint, no action is required.

If your app validates App Store receipts on device, make sure your app will support the SHA-256 version of this certificate. New apps and app updates that don’t support the SHA-256 version of this certificate will no longer be accepted by the App Store starting August 14, 2023.

Important dates

June 20, 2023. Receipts in the sandbox environment will be signed with the SHA‑256 version of this certificate for devices running a minimum of iOS 16.6, iPadOS 16.6, tvOS 16.6, watchOS 9.6, or macOS Ventura 13.5.
August 14, 2023. Receipts in new apps and app updates submitted to the App Store, as well as all apps in sandbox, will be signed with the SHA‑256 intermediate certificate.

For more details, view TN3138: Handling App Store receipt signing certificate change.

Posted on May 26, 2023 by — Leave a comment

Apple notary service update

As announced last year at WWDC, if you notarize your Mac software with the Apple notary service using the altool command-line utility or Xcode 13 or earlier, you’ll need to transition to the notarytool command-line utility or upgrade to Xcode 14 or later. Starting November 1, 2023, the Apple notary service will no longer accept uploads from altool or Xcode 13 or earlier. Existing notarized software will continue to function properly.

The Apple notary service is an automated system that scans Mac software for malicious content, checks for code-signing issues, and returns the results quickly. Notarizing your software assures users that Apple has checked it for malicious software and none was detected.

Learn about migrating to the latest notarization tool

Learn about notarizing macOS software

Posted on May 17, 2023 by — Leave a comment

Report bugs effectively

May 17, 2023

Bugs are an inevitable part of the development process. Though they can be frustrating, you can help squash these sorts of problems quickly by identifying the issue you’re running into, reproducing it, and filing a report through Feedback Assistant.

Discover how you can make sure your feedback is clear and actionable.

Learn more about sending feedback >

Posted on May 15, 2023 by — Leave a comment

Q&A with the passkeys team

Get ready for a world without passwords.

Passkeys are a replacement for passwords, offering a faster, easier, and more secure sign-in experience for your apps and websites. They’re strong, resistant to phishing, and designed to work across Apple devices and nearby non-Apple devices. Best of all, there’s nothing for people to create, guard, or remember.

To help explain how to implement passkeys, the Apple privacy and security team hosted a Q&A to answer common questions about device support, use cases, account recovery, and more. Here are some highlights from that conversation.

How do passkeys work?

Passkeys are based on public key cryptography, which matches a private key saved on a device with a public key sent to a web server. When someone signs in to an account, their private key is verified by your app or website’s public key. That private key never leaves their device, so apps and websites never have access to it — and can’t lose it or reveal it in a hacking or phishing attempt. There’s nothing secret about the public key; it offers no access to anything until paired with the private key.

Which devices support passkeys?

Passkeys work on devices running a minimum of iOS 16 on iPhone 8; iPadOS 16 on iPad 5th generation, iPad mini 5th generation, iPad Air 3rd generation, all iPad Pro models that offer Touch ID or Face ID; macOS Ventura; and tvOS 16. Passkeys are also supported in Safari 16 on macOS Monterey and Big Sur.

When Touch ID or Face ID can’t be used, people can enter their device passcode or system password to authenticate passkey credentials.

How do I adopt passkeys?

The first step is to adopt WebAuthn on your back-end server and add our platform-specific API to your app. Take a deeper dive into next steps by watching the video below:

Meet passkeys

It’s time for a security upgrade: Learn how to add support for passkeys to create a quick and easy sign in experience for people, all while offering a radical increase to account security. Passkeys are simple and strong credentials built to eliminate phishing attacks. We’ll share how passkeys…

What happens if a device is lost or stolen?

Data remains safe. Passkeys are end-to-end encrypted through iCloud Keychain and require biometrics, such as Face ID or Touch ID, or the device passcode to decrypt them. Without these, passkeys remain securely stored on the lost device. For extra peace of mind, you can always remotely wipe your device with Find My.

What does account recovery look like for someone who’s only ever signed in with a passkey?

The recovery method is independent of the authentication mechanism. Apps and websites are welcome to maintain the same recovery methods they use today (such as sending a link in an email to create a new passkey). Recovery will likely be a much less common scenario with passkeys, which are saved by the device. There’s nothing for a human to forget.

Can someone have multiple passkeys for my app; for instance, passkeys generated from multiple devices?

Yes, someone can have one passkey per account per platform. In the special case that someone has more than one account for an app, they’ll have discrete passkeys for each account too.

What’s the difference between passkeys and multifactor authentication?

Multifactor authentication adds additional layers of security on top of an existing password, but generally still leaves the possibility of phishing. Since passkeys eliminate the most pressing problems with passwords and are resistant to phishing, additional user-visible steps aren’t needed.

Is it possible to use an email address as the visible account identifier instead of a username?

Yes, it’s definitely possible. Our videos and documentation use usernames and email addresses as examples. Nothing about account identifiers has to change.