Thanks for this article, it was a life saving ! However I'm facing a final difficulty where my session is instantly expired when I'm redirected from /users/auth/apple/callback. Could the secure cookie attribute test to none for apple callbacks be responsible ?