最近提交 iOS 版本到 App Store 审核,发现审核被拒了,未通过起因如下:
Guideline 5.1.1 – Legal – Privacy – Data Collection and Storage
We noticed that after users authenticate their account with Sign in with Apple, they are required to take additional steps before they can access content and features in your app. Specifically:
- Your app requires two-factor authentication after users use Sign in with Apple.
Sign in with Apple is designed to be a self-contained, all-in-one login system. With security features like built-in two-factor authentication, you can remove additional sign-up steps so users can focus on your app’s content and features.
Next Steps
To resolve this issue, please revise your app so the user is not required to provide additional information or take unnecessary steps after using Sign in with Apple.
Resources
- Learn more about Data Management with Sign in with Apple.
- See how to contact users with anonymized emails using the Private Email Relay Service.
Please see attached screenshot for details.
大抵意思是说须要简化通过 Apple 登录后的应用流程。作者提交的 App 因为手机号是必填项,所以通过第三方 Apple 登录后有个强制绑定手机号的步骤,可能 Apple 审核团队认为这一步使得注册流程变得复杂化了。
解决方案
跟 Apple 审核团队阐明下状况,表明这是为了响应国家网络安全部门要求,并援用了中华人民共和国网络安全法第二十四条加以阐明,内容如下:
第二十四条 网络运营者为用户办理网络接入、域名注册服务,办理固定电话、移动电话等入网手续,或者为用户提供信息公布、即时通讯等服务,在与用户签订协议或者确认提供服务时,该当要求用户提供实在身份信息。用户不提供实在身份信息的,网络运营者不得为其提供相干服务。
国家施行网络可信身份策略,反对钻研开发平安、不便的电子身份认证技术,推动不同电子身份认证之间的互认。
从新提交后就通过审核了。
思考
预先回顾了下,Apple 这么倡议的出发点也是好的,可升高应用门槛,进步用户的应用体验。App 注册流程换一种形式可能会更人性化些,比方通过 Apple 登录后可先容许用户进行一些根本的操作(如浏览内容等),当产生一些特定交互后再提醒用户绑定必要的信息(如手机号)。
iOS 审核一贯比拟严苛,也心愿这篇文章能帮到那些遇到同样问题的开发者们。
本文自己首发 www.zfjobslib.com。【iOS 代码混同工具】版本:ZFJObsLib 1.7.2