You have an idea and you can't launch and focus on your application,
because of many non application code you need to do as a developer.
Auth (user authentication)
API backend server
Paywalls
Onboarding flows
CoreData, CloudKit setup
AWS backend connection setup.
Basic Data Model
Analytics
App Attest
What we need
Xcode
AWS
Firebase
We will be using Firebase as our default for analytics and AWS for user authentication
Journal
01.06.2025
Lets focus on App Attest or device attest, earlier I had the issue where the OpenAI API Key with in an app that I had is stolen and being used to query other GPT models and it has happened multiple times.
When I read online, we should not directly run the API call on the client, but it should be on an adhoc server and let the response be sent back to client.
Implement the server-side validation in AWS Lambda
Add the client-side App Attest code to your iOS app
Flow diagram
sequenceDiagram
participant App as Your iOS App
participant Server as Your Server
participant Apple as Apple's Servers
participant Secure as Secure Enclave
App->>Server: 1. Request Challenge
Server-->>App: 2. Returns Challenge
Note over App,Secure: 3. App gets attestation key from Secure Enclave
App->>Apple: 4. Send Challenge & Key to Apple
Apple->>Apple: 5. Verify app's integrity
Apple-->>App: 6. Returns signed attestation
Note over Apple: (Confirms app is legitimate<br/>and unmodified)
App->>Server: 7. Send attestation + challenge
Server->>Apple: 8. Verify attestation
Apple-->>Server: 9. Confirm attestation is valid
User → Cognito Auth → API Gateway → Lambda → AWS Services
API Gateway will help with
Rate Limiting
Monitoring
Logging
Backend structure
01.04.2025
We will focus on how to do the following
We are going to use AWS Amplify for setting this up
UI should be able to create an account, sign-in, sign-out and forgot password.
