Skip to main content

IOS digital wallet documentation

You can integrate IOS wallet with your account in easy steps.

Fatma Abid avatar
Written by Fatma Abid
Updated over a week ago

To integrate IOS Wallet with your account, follow these steps.

Create a pass type identifier

  1. Open your Apple Developer account, then by Identifiers, click the add

    icon.

  2. Add a new Pass Type ID and start registering for it.

  3. On the Register a New Identifier page, select the option Pass Type IDs.

  4. Under Pass Type ID description, type in the description which will describe what this Pass Type ID represents.

    🤓Tip: Keep it brief and enough details to distinguish this Pass Type ID from your other IDs.

  5. Under, Identifier, which will be the Pass Type Identifier, type in the unique identifier for your Pass Type ID starting with the word “pass”. The identifier should use a “reverse-domain” name style (pass.com.example.appName) then click Continue.

  6. Confirm that your Pass Type ID information is correct then click Register.

  7. On the Registration Complete page, click Done, you will be redirected back to the Pass Type IDs page where you will be able to view the newly created Pass Type ID.
    ​

Generate a signing certificate

⚠️Important: Signing a pass requires a signing certificate for the pass type identifier. Before you can generate a signing certificate you need a certificate signing request (CSR).

  1. Select Certificates, and then click Add icon.

  2. On the next screen, choose Pass Type ID Certificate and click Continue.

  3. Enter a name for the certificate and select the pass type ID from the dropdown menu.

  4. Generate Apple iOS certificate using Windows.

  5. Generate (CSR) on Windows with OpenSSL then set this code: 

    OPENSSL_CONF=c:\OpenSSL-Win64\bin\openssl.cfg (set your OpenSSL config path)

Generate private key

To generate a private key, open ssl genrsa -out mykey.key 2048

Generate certificate signing request

To generate a certificate signing request, open:


ssl req -new -key mykey.key -out ActeolPassbook.csr -subj 

"/[email protected], CN=Your Name, C=US"

The two previous steps can be run using one command:


openssl req -new -newkey rsa:2048 -nodes -keyout mykey.key -out ActeolPassbook.csr -subj 

"/emailAddress= [email protected], CN=Acteol Passbook Demo Certificate, C= US "

  • openssl: activates the OpenSSL software

  • req: indicates that we want a CSR

  • –new –newkey: generate a new key

  • rsa:2048: generate a 2048-bit RSA mathematical key

  • –nodes: no DES, meaning do not encrypt the private key in a PKCS#12 file

  • –keyout: indicates the domain you’re generating a key for

  • –out: specifies the name of the file your CSR will be saved as

You should now have two new files:

  • passbook.key contains your private signing key.

  • passbook.csr contains your certificate signing request.

  1. Now, upload the certificate signing request (CSR).

  2. After uploading the CSR, generate the certificate and download it to the machine used for signing the pass.

  3. Next step is to convert downloaded certificate file into a PEM certificate. PEM file format is a container that can also contain the public certificate or the entire certificate chain (private and public keys, root certificates) in the same file openssl x509 -inform der -in pass.cer -out pass.pemo Now using the PEM file and your private key, generate a valid P12 (need Apple Root Certificate installed)

pkcs12 -export -out pass.p12 -inkey mykey.key -in pass.pem

You'll need to enter the pass phrase for your private signing key, and then specify an Export

Password (twice)

The p12 file will be the Pass Certificate and the password provided will be the Pass Certificate Password.

Generate Apple iOS certificate using Mac

  1. Locate the Applications folder on your Mac, click on Utilities, then double-click Keychain Access.

  2. Click Keychain Access in the top left corner of your screen, then choose Certificate Assistant then select Request a Certificate from a Certificate Authority.

  3. From the opened application Certificate Assistant, fill in the user email address and common name fields. We suggest that you use your Apple ID for the “User Email Address” the description you used on the Apple developer portal for the “Common Name” field. The “CA Email Address” field should be left empty. For the Request is option, select Saved to disk. Click Continue and choose where you would like to save the certificate file and click Save. You will see a Conclusion message confirming that the Certificate has been created on disk.

  4. Click Done

  5. Switch back to your browser and click Continue on the Create a New Certificate page.

  6. Under Upload a Certificate Signing Request, click Choose File and select the .certSigningRequest file that you just saved to your Mac earlier and click Continue and wait for your certificate to be ready for download.

  7. To download the certificate to your Mac, click Download then save the file to your desktop as pass.cer.

The certificate creation process is completed now, and you can close the browser.

  1. Now, locate the downloaded pass.cer file and double click on it. Keychain Access will then open.

  2. Select the login Keychain and the Certificates Category and find the certificate with a prefix of Pass Type ID followed by the identifier you chose.

  3. Click on the little gray triangle to expand the certificate and unveil the private key.

  4. Select both the certificate and the private key. Choose File → Export

    Items.

  5. Choose a location and a file name. Choose File Format Personal Information Exchange (.p12) and click Save.

  6. Insert a password and verify it.

    🤓Tip: This password is important and required for signing passes. Please save it with all the certificate and Pass Type ID information you gather at the end of the certificate creation process.

  7. You’ll be asked to insert the Password of your current account on your Mac.

  8. Click Allow or Always Allow.

Generate Apple push notification service (Apns) key

  1. Log in to your Paid Apple Developer Account and navigate to Certificates, Identifiers & Profiles > Keys and select the Blue + button.

  2. Select Apple Push Notifications service (APNs) and enter a name for the key.

  3. Select Continue and on the next page, select Register.

  4. Download your new key and save it in a secure place. You can only download it once, so don't lose it. Then, click Done and you will have a new key.

  5. After you download this file, you need to open your p8 file with a text editor, and extract the private key you will find something like this:

-----BEGIN PRIVATE KEY-----
MIIDBjCCAm8CAQAwcTERMA8GA1UEAxMIcXV1eC5jb20xDzANBgNVBAsTBkJyYWluCmHFqMOvXaFlT/BBBB
BBBBBBBBBBBBBBBBBBBBBDAQehRANCAACCCCCCCRnZHgbzkA1DPsDBQPDhm76d6lgaGUC9M+AAAAAAAAAA
AAAAAAAAAAAAAAAAsAnAZ14noyVWSBV/nsIM 
-----END PRIVATE KEY-----

Please provide the following information to Atreemo:

  • Pass Type Id.

  • Team Identifier.

  • p12 Certificate.

  • Certificate Password.

  • P8 private key.

  • P8 key ID.

Related Articles
View a contact's interactions
Save colour codes to use for your campaign design
Configure the settings for your digital wallet
Integrate Google Wallet in Acteol
Create a template
Did this answer your question?