Hey there! I’ve helped folks with Apple Wallet pass generation on the server side plenty of times, so let’s break this down step by step for you.

一、核心前置准备 #

Before diving into code, make sure you have these essentials sorted—they’re non-negotiable for Apple Wallet integration:

• An Apple Developer Account (required to create Pass Type ID certificates for signing passes)
• A registered Pass Type ID (set up in your Apple Developer Console, linked to your signing certificate)
• Server-side tech stack: We’ll use Node.js here (it has great tooling for pass generation), but you can adapt this logic to Python, Java, or any language you prefer.

二、Server-Side .pkpass Generation (Node.js Example) #

1. Install Dependencies #

Use passkit-generator—it handles the messy parts like signing, file structuring, and packaging so you don’t have to do it manually:

npm install passkit-generator

2. Write the Generation Logic #

First, gather your .p12 Pass Type ID certificate, Apple’s WWDR root certificate, and your team ID. Then use this code to generate dynamic passes:

const { Pass } = require('passkit-generator');
const fs = require('fs');

// Load your certificates
const passCertificate = fs.readFileSync('./PassTypeID.p12');
const wwdrCertificate = fs.readFileSync('./WWDR.pem'); // Apple's WWDR root cert, mandatory

async function generateDynamicPass() {
  // Initialize a Pass instance using your static pass template as a base
  const pass = new Pass({
    model: './your-static-pass-template', // Folder with your manual pass files (pass.json, images, etc.)
    certificates: {
      wwdr: wwdrCertificate,
      signer: {
        pkcs12: passCertificate,
        passphrase: 'your-cert-password' // Password you set when exporting the .p12
      }
    },
    overrides: {
      // Dynamically replace values in pass.json (customize for each user/transaction)
      'pass.json': {
        serialNumber: `USER_PASS_${Date.now()}`, // Must be unique per pass
        userInfo: {
          fullName: req.query.username, // Pull from request params if needed
          orderId: 'ORD-12345'
        }
      }
    }
  });

  // Generate the .pkpass file as a buffer
  const passBuffer = await pass.generate();
  return passBuffer;
}

Pro Tip: Reuse your existing static pass folder as the template—this keeps your styling consistent while letting you inject dynamic data via the overrides object.

3. Expose an API Endpoint #

Create a simple HTTP endpoint to serve the generated pass to iOS devices:

const express = require('express');
const app = express();

app.get('/get-wallet-pass', async (req, res) => {
  try {
    const passBuffer = await generateDynamicPass();
    // Critical: Set the correct headers so iOS recognizes the file
    res.set({
      'Content-Type': 'application/vnd.apple.pkpass',
      'Content-Disposition': 'inline; filename="dynamic-wallet-pass.pkpass"'
    });
    res.send(passBuffer);
  } catch (err) {
    res.status(500).send(`Failed to generate pass: ${err.message}`);
  }
});

app.listen(3000, () => console.log('Server running on port 3000'));

三、iOS Device Integration: Fetch & Open the Pass #

1. Via Safari Browser #

• Deploy your server to a public domain (or use a tool like ngrok for local testing)
• On an iPhone/iPad, open Safari and navigate to your API endpoint (e.g., https://your-domain.com/get-wallet-pass)
• Safari will automatically detect the .pkpass file and prompt the user to "Add to Wallet"—tap the button, and the pass is added!

2. Via Your iOS App #

If you’re building a native app, you can either:

• Open the API URL directly with UIApplication.shared.open() (Safari will handle the rest)
• Download the pass data and use Apple’s PassKit framework to add it inline:

import PassKit

// Example: Add pass after downloading data from your server
if let passData = downloadedPassData, let pass = try? PKPass(data: passData) {
  let addPassVC = PKAddPassesViewController(pass: pass)
  present(addPassVC, animated: true)
}

四、Common Pitfalls to Avoid #

• Certificate Issues: Always use a valid Pass Type ID certificate, and keep Apple’s WWDR root certificate updated (it expires periodically)
• Unique Serial Numbers: Every pass needs a unique serialNumber—duplicates will be rejected by Apple Wallet
• Correct Headers: If you skip setting Content-Type: application/vnd.apple.pkpass, iOS won’t recognize the file
• Template Integrity: Make sure your template images (logo, background, etc.) meet Apple’s size requirements—missing or incorrectly sized assets can break pass display

内容的提问来源于stack exchange，提问作者Darshan