In this guide, we'll go through all the necessary steps to get your Apple push credentials configured with Twilio Notifications. The end result is a Twilio Credential which you can then use to receive notifications in your iOS app. Let's get started!
Log into your Apple development account and click on Identifiers under the Certificates, Identifiers & Profiles section. This will show a list of identifiers, including App IDs.
If your App ID is already on this list, click on it and a list of capabilities will popup.
- Check the 'Push Notifications' option.
- Don't worry about the Configure button right now, just click the Save button in the upper right.
If your App ID isn't on this list, click the "+" symbol to add a new App ID.
- Choose App IDs and click the Continue button in the upper right.
- Give your app a description as you see fit.
- Give it an Explicit Bundle ID that matches the bundle identifier in Xcode (such as com.twilio.notify.NotifyQuickstart).
- Under Capabilities check Push Notifications
- Click the Continue button
- Click the Register button to confirm your new App ID and create it.
Now we'll want to create a push notification certificate. This will enable your app to receive notifications. You can either make a development certificate or a production certificate. For this guide, we'll make a development certificate. We recommend you use Xcode managed certificate.
- In your Xcode project, go to the General pane of the target for your iOS application:
2. In the Signing section, check “Automatically manage signing”:
3. If you are using the Quickstart app and see a provisioning error message you may need to rename the bundle id to a unique identifier.
To do so, go to https://developer.apple.com/account/resources/certificates/list and give the bundle a new name. Then, enter your new identifier in the Identity section of the General pane:
4. Go to the capabilities tab in Xcode and make sure that Push Notifications are enabled:
5. You can verify that your certificates have been created in a few different ways:
a. Via Apple developer portal:
1. Sign in to the Apple developer portal and click on Certificates, IDs & Profile
2. In the Certificates section of the sidebar, select Development or Production depending on the type of certificate you want to verify.
b. Make sure your certificate is stored in your keychain:
1. Locally, go to keychain access and select “Certificates” in the left sidebar. Search for ‘iPhone’ to filter for iPhone certificates.
2. Double-check that your certificate has a disclosure triangle next to it, indicating the existence of your private key in the keychain
6. Congrats! You just created an Apple Development iOS Push Services certificate. If you run into problems during this process, see this guide from Apple.
While we recommend you use Xcode managed certificates for your application, you may also choose to manually create your certificate.
- Add a certificate on the Apple Developer Portal
- Under Services, select 'Apple Push Notification service SSL (Sandbox)'.
- Click 'Continue'
- Select the App ID you previously created in the textbox.
- Click 'Continue' again
- It will prompt you to create a Certificate Signing Request, with instructions on how to do it. Create one.
- Once you've created a CSR, click 'Continue'.
- Upload it.
- Click 'Generate' to generate your certificate.
Congrats! You just created an Apple Development iOS Push Services certificate. Now you can download it and double click on it locally to add it to your Keychain access.
In Keychain Access, go to the 'My Certificates' Category in the lefthand sidebar.
- Right-click your new certificate. It should be labeled "Apple Development iOS Push Services".
- Choose "Export"
- Save it as cred.p12. (Leave the password blank)
This is your credential file. We're going to extract your certificate key and private key from this file. We need these 2 keys to create a Twilio Credential.
Run the following command in terminal
openssl pkcs12 -in cred.p12 -nokeys -out cert.pem -nodes
Run the following command in terminal
openssl pkcs12 -in cred.p12 -nocerts -out key.pem -nodes
Then this command to process the RSA key
openssl rsa -in key.pem -out key.pem
Then you can paste your credentials into the web console to upload them.
Strip anything outside of "-----BEGIN CERTIFICATE-----" and "-----END CERTIFICATE-----" boundaries and outside of "-----BEGIN RSA PRIVATE KEY-----" and "-----END RSA PRIVATE KEY-----" boundaries before pasting them. Check the 'Sandbox' button if you made a development certificate. Sandbox is synonymous with development mode.
After you've pasted them in, click save. If everything went well, you'll see a SID appear on the new page. Copy it to your clipboard, you will need it in the next step. Congrats, you just made a Twilio Push Credential!
Twilio allows you to build multiple applications in a single account. To separate those applications you need to create Service instances that hold all the data and configuration for your application.
Specifically you need to configure your Service instance to use the Credential that contains your APNS certificate and private key. You can do that using the Services page in the Twilio console. You will need to update your Service with the APNS credential SID.
If you are just getting started, set up this APN credential first, then create your Service first by clicking the red plus button on the services console page.
You are ready to go. Check out the iOS Quickstart to start sending notifications.