appleauth

package

v0.35.4 Latest Latest Go to latest Published: Mar 21, 2026 License: MIT Imports: 21 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/moasq/nanowave

Links

Documentation ¶

Index ¶

func ClearIrisSessions()
func LoadIrisCookies() (http.CookieJar, error)
func SaveIrisCookies(appleID string, jar http.CookieJar) error
type AuthState
type Client
- func NewClient() (*Client, error)
type OnboardingResult
- func RunOnboarding(ctx context.Context, client *Client, appleID string) (*OnboardingResult, error)
type TrustedPhone

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func ClearIrisSessions ¶

func ClearIrisSessions()

ClearIrisSessions removes all stored iris session files.

func LoadIrisCookies ¶

func LoadIrisCookies() (http.CookieJar, error)

LoadIrisCookies restores saved iris session cookies into a cookie jar. Returns the jar or an error if no session is available.

func SaveIrisCookies ¶

func SaveIrisCookies(appleID string, jar http.CookieJar) error

SaveIrisCookies persists iris session cookies for future use.

Types ¶

type AuthState ¶

type AuthState struct {
	TrustedPhones     []TrustedPhone
	CodeLength        int
	HasTrustedDevices bool
}

AuthState holds the 2FA state after SRP authentication.

type Client ¶

type Client struct {
	// contains filtered or unexported fields
}

Client handles Apple IDMSA SRP authentication and 2FA.

func NewClient ¶

func NewClient() (*Client, error)

NewClient creates a new Apple authentication client.

func (*Client) CookieJar ¶

func (c *Client) CookieJar() http.CookieJar

CookieJar returns the HTTP cookie jar for session persistence.

func (*Client) FetchServiceKey ¶

func (c *Client) FetchServiceKey(ctx context.Context) error

FetchServiceKey fetches the Apple auth service key from Olympus.

func (*Client) RequestSMSCode ¶

func (c *Client) RequestSMSCode(ctx context.Context, phoneID int) error

RequestSMSCode sends an SMS verification code to the specified phone.

func (c *Client) SignIn(ctx context.Context, appleID, password string) (*AuthState, error)

SignIn performs SRP authentication with Apple ID. Returns an AuthState if 2FA is required, nil if sign-in completed directly.

func (*Client) TrustSession ¶

func (c *Client) TrustSession(ctx context.Context) error

TrustSession establishes a trusted session after 2FA verification.

func (*Client) VerifyDeviceCode ¶

func (c *Client) VerifyDeviceCode(ctx context.Context, code string) error

VerifyDeviceCode verifies a trusted device OTP code.

func (*Client) VerifySMSCode ¶

func (c *Client) VerifySMSCode(ctx context.Context, code string, phoneID int) error

VerifySMSCode verifies an SMS OTP code.

type OnboardingResult ¶

type OnboardingResult struct {
	KeyID    string
	IssuerID string
	TeamName string
}

OnboardingResult holds the outcome of the full onboarding flow.

func RunOnboarding ¶

func RunOnboarding(ctx context.Context, client *Client, appleID string) (*OnboardingResult, error)

RunOnboarding executes the full onboarding flow after web authentication:

Use session cookies from IDMSA auth
GET /iris/v1/contentProviders -> issuer ID + team name
POST /iris/v1/apiKeys -> key ID + .p8 content
asc auth login -> register the key for CLI usage

type TrustedPhone ¶

type TrustedPhone struct {
	ID                 int    `json:"id"`
	NumberWithDialCode string `json:"numberWithDialCode"`
}

TrustedPhone represents a phone number for SMS 2FA.

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL