diff --git a/api/src/main/kotlin/com/oksusu/susu/api/auth/application/AuthFacade.kt b/api/src/main/kotlin/com/oksusu/susu/api/auth/application/AuthFacade.kt
index a70a302d..c6684c02 100644
--- a/api/src/main/kotlin/com/oksusu/susu/api/auth/application/AuthFacade.kt
+++ b/api/src/main/kotlin/com/oksusu/susu/api/auth/application/AuthFacade.kt
@@ -1,11 +1,6 @@
 package com.oksusu.susu.api.auth.application
 
-import com.oksusu.susu.api.auth.model.AdminUserImpl
-import com.oksusu.susu.api.auth.model.AuthContextImpl
-import com.oksusu.susu.api.auth.model.AuthUser
-import com.oksusu.susu.api.auth.model.AuthUserImpl
-import com.oksusu.susu.api.auth.model.AuthUserToken
-import com.oksusu.susu.api.auth.model.TokenDto
+import com.oksusu.susu.api.auth.model.*
 import com.oksusu.susu.api.auth.model.response.TokenRefreshRequest
 import com.oksusu.susu.api.event.model.CreateUserStatusHistoryEvent
 import com.oksusu.susu.api.event.model.CreateUserWithdrawEvent
@@ -139,7 +134,7 @@ class AuthFacade(
     }
 
     @Transactional
-    suspend fun withdraw(authUser: AuthUser, code: String?, accessToken: String?) {
+    suspend fun withdraw(authUser: AuthUser, code: String?, googleAccessToken: String?, appleAccessToken: String?) {
         val (deactivatedPosts, userAndUserStatusModel) = parZipWithMDC(
             { postService.findAllByUid(authUser.uid) },
             { userService.getUserAndUserStatus(authUser.uid) }
@@ -191,7 +186,7 @@ class AuthFacade(
             }
 
             val oAuthDeferred = async {
-                oAuthService.withdraw(user.oauthInfo, code, accessToken)
+                oAuthService.withdraw(user.oauthInfo, code, googleAccessToken, appleAccessToken)
             }
 
             awaitAll(txDeferred, oAuthDeferred)
diff --git a/api/src/main/kotlin/com/oksusu/susu/api/auth/application/OAuthService.kt b/api/src/main/kotlin/com/oksusu/susu/api/auth/application/OAuthService.kt
index f53e4ec6..271ef2f9 100644
--- a/api/src/main/kotlin/com/oksusu/susu/api/auth/application/OAuthService.kt
+++ b/api/src/main/kotlin/com/oksusu/susu/api/auth/application/OAuthService.kt
@@ -52,11 +52,11 @@ class OAuthService(
     }
 
     /** oauth 유저 회원 탈퇴하기 */
-    suspend fun withdraw(oauthInfo: OauthInfo, code: String?, accessToken: String?) {
+    suspend fun withdraw(oauthInfo: OauthInfo, code: String?, googleAccessToken: String?, appleAccessToken: String?) {
         when (oauthInfo.oAuthProvider) {
             OAuthProvider.KAKAO -> kakaoOAuthService.withdraw(oauthInfo.oAuthId)
-            OAuthProvider.APPLE -> appleOAuthService.withdraw(code!!)
-            OAuthProvider.GOOGLE -> googleOAuthService.withdraw(accessToken!!)
+            OAuthProvider.APPLE -> appleOAuthService.withdraw(appleAccessToken!!)
+            OAuthProvider.GOOGLE -> googleOAuthService.withdraw(googleAccessToken!!)
         }
     }
 }
diff --git a/api/src/main/kotlin/com/oksusu/susu/api/auth/application/oauth/AppleOAuthService.kt b/api/src/main/kotlin/com/oksusu/susu/api/auth/application/oauth/AppleOAuthService.kt
index b42925cf..7ea3f17c 100644
--- a/api/src/main/kotlin/com/oksusu/susu/api/auth/application/oauth/AppleOAuthService.kt
+++ b/api/src/main/kotlin/com/oksusu/susu/api/auth/application/oauth/AppleOAuthService.kt
@@ -39,12 +39,12 @@ class AppleOAuthService(
 
     /** link */
     suspend fun getOAuthLoginLinkDev(): OAuthLoginLinkResponse {
-        val redirectUrl = domainName + appleOAuthUrlConfig.webCallbackUrl
+        val redirectUrl = domainName + appleOAuthUrlConfig.devCallbackUrl
         return OAuthLoginLinkResponse(
             appleOAuthUrlConfig.appleIdUrl +
                 String.format(
                     appleOAuthUrlConfig.authorizeUrl,
-                    appleOAuthSecretConfig.webClientId,
+                    appleOAuthSecretConfig.clientId,
                     redirectUrl
                 )
         )
@@ -64,7 +64,7 @@ class AppleOAuthService(
 
     /** oauth token 받아오기 */
     suspend fun getOAuthTokenDev(code: String): OAuthTokenResponse {
-        val redirectUrl = domainName + appleOAuthUrlConfig.redirectUrl
+        val redirectUrl = domainName + appleOAuthUrlConfig.devCallbackUrl
         return getAppleToken(redirectUrl, code, appleOAuthSecretConfig.clientId, getClientSecretDev())
     }
 
@@ -83,8 +83,6 @@ class AppleOAuthService(
             appleClient.getToken(redirectUrl, code, clientId, clientSecret)
         }
 
-        getOIDCDecodePayload(tokens.idToken)
-
         return OAuthTokenResponse.fromApple(tokens)
     }
 
@@ -96,11 +94,6 @@ class AppleOAuthService(
         return OAuthUserInfoDto.fromApple(oidcDecodePayload.sub)
     }
 
-    suspend fun getAppleOAuthInfoDev(idToken: String): OAuthUserInfoDto {
-        val oidcDecodePayload = getOIDCDecodePayloadDev(idToken)
-        return OAuthUserInfoDto.fromApple(oidcDecodePayload.sub)
-    }
-
     /**
      * oidc decode
      */
@@ -114,24 +107,12 @@ class AppleOAuthService(
         )
     }
 
-    private suspend fun getOIDCDecodePayloadDev(token: String): OidcDecodePayload {
-        val oidcPublicKeysResponse = oidcService.getOidcPublicKeys(OAuthProvider.APPLE)
-        return oidcService.getPayloadFromIdToken(
-            token,
-            appleOAuthUrlConfig.appleIdUrl,
-            appleOAuthSecretConfig.webClientId,
-            oidcPublicKeysResponse
-        )
-    }
-
     /** 회원 탈퇴합니다 */
-    suspend fun withdraw(code: String) {
-        val tokens = getOAuthWithdrawToken(code)
-
+    suspend fun withdraw(accessToken: String) {
         withMDCContext(Dispatchers.IO) {
             appleClient.withdraw(
                 appleOAuthSecretConfig.clientId,
-                tokens.accessToken,
+                accessToken,
                 getClientSecret()
             )
         }
@@ -145,19 +126,19 @@ class AppleOAuthService(
     }
 
     private fun getClientSecretDev(): String {
-        return createClientSecret(appleOAuthSecretConfig.webClientId)
+        return createClientSecret(appleOAuthSecretConfig.clientId)
     }
 
     private fun createClientSecret(clientId: String): String {
-        val iat = Date().toInstant()
-        val exp = Date(iat.epochSecond + 3600000).toInstant()
+        val iat = Date()
+        val exp = Date(iat.time + 3600000).toInstant()
 
         val headers = mapOf("alg" to "ES256", "kid" to appleOAuthSecretConfig.keyId)
 
         val unsignedJWT = JWT.create().apply {
             this.withHeader(headers)
             this.withIssuer(appleOAuthSecretConfig.teamId)
-            this.withAudience(appleOAuthSecretConfig.authKey)
+            this.withAudience(appleOAuthUrlConfig.appleIdUrl)
             this.withIssuedAt(iat)
             this.withExpiresAt(exp)
             this.withSubject(clientId)
diff --git a/api/src/main/kotlin/com/oksusu/susu/api/auth/application/oauth/OidcService.kt b/api/src/main/kotlin/com/oksusu/susu/api/auth/application/oauth/OidcService.kt
index d58d7fe6..600870a1 100644
--- a/api/src/main/kotlin/com/oksusu/susu/api/auth/application/oauth/OidcService.kt
+++ b/api/src/main/kotlin/com/oksusu/susu/api/auth/application/oauth/OidcService.kt
@@ -95,8 +95,7 @@ class OidcService(
         return OidcDecodePayload(
             iss = jwt.getClaim("iss").asString(),
             aud = jwt.getClaim("aud").asString(),
-            sub = jwt.getClaim("sub").asString(),
-            email = jwt.getClaim("email").asString()
+            sub = jwt.getClaim("sub").asString()
         )
     }
 
diff --git a/api/src/main/kotlin/com/oksusu/susu/api/auth/model/OidcDecodePayload.kt b/api/src/main/kotlin/com/oksusu/susu/api/auth/model/OidcDecodePayload.kt
index 3382dc0e..84cdd39b 100644
--- a/api/src/main/kotlin/com/oksusu/susu/api/auth/model/OidcDecodePayload.kt
+++ b/api/src/main/kotlin/com/oksusu/susu/api/auth/model/OidcDecodePayload.kt
@@ -7,5 +7,4 @@ data class OidcDecodePayload(
     val aud: String,
     /** oauth provider account unique id  */
     val sub: String,
-    val email: String,
 )
diff --git a/api/src/main/kotlin/com/oksusu/susu/api/auth/model/response/OAuthTokenResponse.kt b/api/src/main/kotlin/com/oksusu/susu/api/auth/model/response/OAuthTokenResponse.kt
index 4f6d8103..228a8114 100644
--- a/api/src/main/kotlin/com/oksusu/susu/api/auth/model/response/OAuthTokenResponse.kt
+++ b/api/src/main/kotlin/com/oksusu/susu/api/auth/model/response/OAuthTokenResponse.kt
@@ -9,6 +9,8 @@ data class OAuthTokenResponse(
     val accessToken: String,
     /** oauth refresh token */
     val refreshToken: String,
+    /** oauth id token (apple은 이거 사용) */
+    val idToken: String? = null,
 ) {
     companion object {
         fun fromKakao(kakaoOAuthTokenResponse: KakaoOAuthTokenResponse): OAuthTokenResponse {
@@ -21,7 +23,8 @@ data class OAuthTokenResponse(
         fun fromApple(appleOAuthTokenResponse: AppleOAuthTokenResponse): OAuthTokenResponse {
             return OAuthTokenResponse(
                 accessToken = appleOAuthTokenResponse.accessToken,
-                refreshToken = appleOAuthTokenResponse.refreshToken
+                refreshToken = appleOAuthTokenResponse.refreshToken,
+                idToken = appleOAuthTokenResponse.idToken
             )
         }
 
diff --git a/api/src/main/kotlin/com/oksusu/susu/api/auth/presentation/AuthResource.kt b/api/src/main/kotlin/com/oksusu/susu/api/auth/presentation/AuthResource.kt
index 42a80329..d304aef8 100644
--- a/api/src/main/kotlin/com/oksusu/susu/api/auth/presentation/AuthResource.kt
+++ b/api/src/main/kotlin/com/oksusu/susu/api/auth/presentation/AuthResource.kt
@@ -35,12 +35,14 @@ class AuthResource(
      *  회원 탈퇴
      *  kakao는 아무것도 안넘겨줘도 됩니다
      *  google 회원탈퇴시 구글측 accessToken을 param으로 넘겨줘야함
+     *  apple 회원탈퇴시 애플측 accessToken을 param으로 넘겨줘야함
      */
     @Operation(summary = "withdraw")
     @PostMapping("/withdraw")
     suspend fun tokenRefresh(
         authUser: AuthUser,
         @RequestParam code: String?,
-        @RequestParam accessToken: String?,
-    ) = authFacade.withdraw(authUser, code, accessToken).wrapVoid()
+        @RequestParam googleAccessToken: String?,
+        @RequestParam appleAccessToken: String?,
+    ) = authFacade.withdraw(authUser, code, googleAccessToken, appleAccessToken).wrapVoid()
 }
diff --git a/api/src/main/kotlin/com/oksusu/susu/api/auth/presentation/OAuthResource.kt b/api/src/main/kotlin/com/oksusu/susu/api/auth/presentation/OAuthResource.kt
index 3648fd7a..3e8922da 100644
--- a/api/src/main/kotlin/com/oksusu/susu/api/auth/presentation/OAuthResource.kt
+++ b/api/src/main/kotlin/com/oksusu/susu/api/auth/presentation/OAuthResource.kt
@@ -21,7 +21,10 @@ class OAuthResource(
     private val oAuthFacade: OAuthFacade,
 ) {
 
-    /** 가입된 유저인지 체크합니다. */
+    /**
+     * 가입된 유저인지 체크합니다. /n
+     * APPLE 로그인은 accessToken에 idToken 넣어주세요
+     */
     @Operation(summary = "register valid check")
     @GetMapping("/{provider}/sign-up/valid")
     suspend fun checkRegisterValid(
@@ -29,7 +32,10 @@ class OAuthResource(
         @RequestParam accessToken: String,
     ) = oAuthFacade.checkRegisterValid(provider, accessToken).wrapOk()
 
-    /** 회원가입을 합니다. */
+    /**
+     * 회원가입을 합니다.
+     * APPLE 로그인은 accessToken에 idToken 넣어주세요
+     */
     @Operation(summary = "register")
     @PostMapping("/{provider}/sign-up")
     suspend fun register(
@@ -39,7 +45,10 @@ class OAuthResource(
         @RequestParam accessToken: String,
     ) = oAuthFacade.register(provider, accessToken, request, deviceContext).wrapCreated()
 
-    /** 로그인을 합니다. */
+    /**
+     * 로그인을 합니다.
+     * APPLE 로그인은 accessToken에 idToken 넣어주세요
+     */
     @Operation(summary = "login")
     @PostMapping("/{provider}/login")
     suspend fun login(
diff --git a/api/src/main/kotlin/com/oksusu/susu/api/auth/presentation/OAuthWithdrawResource.kt b/api/src/main/kotlin/com/oksusu/susu/api/auth/presentation/OAuthWithdrawResource.kt
index b4612695..3dcb9f33 100644
--- a/api/src/main/kotlin/com/oksusu/susu/api/auth/presentation/OAuthWithdrawResource.kt
+++ b/api/src/main/kotlin/com/oksusu/susu/api/auth/presentation/OAuthWithdrawResource.kt
@@ -27,9 +27,11 @@ class OAuthWithdrawResource(
     ): String {
         val kakaoRedirectUrl = oAuthService.getOAuthWithdrawLoginLink(OAuthProvider.KAKAO, request.uri.toString())
         val googleRedirectUrl = oAuthService.getOAuthWithdrawLoginLink(OAuthProvider.GOOGLE, request.uri.toString())
+        val appleRedirectUrl = oAuthService.getOAuthWithdrawLoginLink(OAuthProvider.APPLE, request.uri.toString())
 
         model.addAttribute("kakaoRedirectUrl", kakaoRedirectUrl.link)
         model.addAttribute("googleRedirectUrl", googleRedirectUrl.link)
+        model.addAttribute("appleRedirectUrl", appleRedirectUrl.link)
         return "withdrawLogin"
     }
 
@@ -52,7 +54,7 @@ class OAuthWithdrawResource(
 
     /** oauth callback용 url, 로그인 완료되면 /withdraw로 redirect */
     @GetMapping("/GOOGLE/callback")
-    suspend fun getGooGleCallbackPage(
+    suspend fun getGoogleCallbackPage(
         model: Model,
         request: ServerHttpRequest,
         @RequestParam code: String,
@@ -67,15 +69,34 @@ class OAuthWithdrawResource(
         return RedirectView("/withdraw?xSusuAuthToken=$susuToken&googleAccessToken=$googleAccessToken")
     }
 
+    /** oauth callback용 url, 로그인 완료되면 /withdraw로 redirect */
+    @GetMapping("/apple/callback")
+    suspend fun getAppleCallbackPage(
+        model: Model,
+        request: ServerHttpRequest,
+        @RequestParam code: String,
+    ): RedirectView {
+        val appleAccessToken = oAuthService.getOAuthWithdrawToken(OAuthProvider.APPLE, code).accessToken
+        val susuToken = oAuthFacade.login(
+            provider = OAuthProvider.APPLE,
+            request = OAuthLoginRequest(appleAccessToken),
+            deviceContext = UserDeviceContextImpl.getDefault()
+        ).accessToken
+
+        return RedirectView("/withdraw?xSusuAuthToken=$susuToken&appleAccessToken=$appleAccessToken")
+    }
+
     /** 회원 탈퇴 페이지 */
     @GetMapping("/withdraw")
     suspend fun getWithdrawPage(
         model: Model,
         @RequestParam xSusuAuthToken: String,
         @RequestParam googleAccessToken: String?,
+        @RequestParam appleAccessToken: String?,
     ): String {
         model.addAttribute("xSusuAuthToken", xSusuAuthToken)
         model.addAttribute("googleAccessToken", googleAccessToken)
+        model.addAttribute("appleAccessToken", appleAccessToken)
         return "withdraw"
     }
 }
diff --git a/api/src/main/kotlin/com/oksusu/susu/api/config/OAuthSecretConfig.kt b/api/src/main/kotlin/com/oksusu/susu/api/config/OAuthSecretConfig.kt
index 356b5154..65c1eb0c 100644
--- a/api/src/main/kotlin/com/oksusu/susu/api/config/OAuthSecretConfig.kt
+++ b/api/src/main/kotlin/com/oksusu/susu/api/config/OAuthSecretConfig.kt
@@ -35,7 +35,6 @@ class OAuthSecretConfig(
     @ConfigurationProperties(prefix = "oauth.apple")
     class AppleOAuthSecretConfig(
         val clientId: String,
-        val webClientId: String,
         val keyId: String,
         val teamId: String,
         val authKey: String,
diff --git a/api/src/main/resources/config/application.yml b/api/src/main/resources/config/application.yml
index dcfb2134..e6a8e34a 100644
--- a/api/src/main/resources/config/application.yml
+++ b/api/src/main/resources/config/application.yml
@@ -52,14 +52,10 @@ oauth:
     admin-key: ${KAKAO_ADMIN_KEY}
 
   apple:
-    baseUrl: ${APPLE_BASE_URL}
-    clientId: ${APPLE_CLIENT_ID}
-    webClientId: ${APPLE_WEB_CLIENT_ID}
-    keyId: ${APPLE_KEY_ID}
-    redirectUrl: ${APPLE_REDIRECT}
-    teamId: ${APPLE_TEAM_ID}
-    webCallbackUrl: ${APPLE_WEB_CALLBACK}
-    authKey: ${APPLE_AUTH_KEY}
+    client-id: ${APPLE_CLIENT_ID}
+    key-id: ${APPLE_KEY_ID}
+    team-id: ${APPLE_TEAM_ID}
+    auth-key: ${APPLE_AUTH_KEY}
 
   google:
     client-id: ${GOOGLE_CLIENT_ID}
diff --git a/api/src/main/resources/static/appleLogin.png b/api/src/main/resources/static/appleLogin.png
new file mode 100644
index 00000000..a106a128
Binary files /dev/null and b/api/src/main/resources/static/appleLogin.png differ
diff --git a/api/src/main/resources/templates/withdraw.html b/api/src/main/resources/templates/withdraw.html
index 9533c09a..f8f904c8 100644
--- a/api/src/main/resources/templates/withdraw.html
+++ b/api/src/main/resources/templates/withdraw.html
@@ -7,17 +7,17 @@
             crossorigin
             href="https://cdn.jsdelivr.net/gh/orioncactus/pretendard@v1.3.9/dist/web/static/pretendard.min.css"
     />
-    <link rel="stylesheet" th:href="@{/css/withdraw.css}" />
+    <link rel="stylesheet" th:href="@{/css/withdraw.css}"/>
     <link rel="apple-touch-icon" sizes="180x180" th:href="@{/apple-touch-icon.png}">
-    <link rel="icon" type="image/png" sizes="192x192"  th:href="@{/susufavicon_16_16.png}">
+    <link rel="icon" type="image/png" sizes="192x192" th:href="@{/susufavicon_16_16.png}">
     <link rel="icon" type="image/png" sizes="32x32" th:href="@{/susufavicon_32_32.png}">
     <link rel="icon" type="image/png" sizes="16x16" th:href="@{/susufavicon_16_16.png}">
     <script src="https://ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js"></script>
     <script th:inline="javascript">
         /*<![CDATA[*/
-        function withdrawUser(xSusuAuthToken, googleAccessToken) {
+        function withdrawUser(xSusuAuthToken, googleAccessToken, appleAccessToken) {
             $.ajax({
-                url: `/api/v1/auth/withdraw?accessToken=` + googleAccessToken,
+                url: `/api/v1/auth/withdraw?googleAccessToken=` + googleAccessToken + `appleAccessToken=` + appleAccessToken,
                 type: 'post',
                 contentType: 'application/json; charset=utf-8',
                 dataType: 'application/json',
@@ -33,9 +33,10 @@
                 }
             });
         }
+
         /*]]>*/
     </script>
-    <meta charset="utf-8" />
+    <meta charset="utf-8"/>
     <title>SUSU 회원 탈퇴</title>
 </head>
 <body>
@@ -48,15 +49,15 @@
                 탈퇴 시 작성했던 데이터를 복구할 수 없어요
             </p>
             <div class="withdrawButton"
-                 th:attr="xSusuAuthToken=${xSusuAuthToken}, googleAccessToken=${googleAccessToken}"
-                 th:onclick="withdrawUser(this.getAttribute('xSusuAuthToken'), this.getAttribute('googleAccessToken'))" />
-                <p>탈퇴</p>
-            </div>
+                 th:attr="xSusuAuthToken=${xSusuAuthToken}, googleAccessToken=${googleAccessToken}, appleAccessToken=${appleAccessToken}"
+                 th:onclick="withdrawUser(this.getAttribute('xSusuAuthToken'), this.getAttribute('googleAccessToken'),  this.getAttribute('appleAccessToken')))"/>
+            <p>탈퇴</p>
         </div>
     </div>
-    <div class="Logo">
-        <svg th:replace="~{component/logo}">logo</svg>
-    </div>
+</div>
+<div class="Logo">
+    <svg th:replace="~{component/logo}">logo</svg>
+</div>
 </div>
 </body>
 </html>
diff --git a/api/src/main/resources/templates/withdrawLogin.html b/api/src/main/resources/templates/withdrawLogin.html
index 533b23c4..d82c25aa 100644
--- a/api/src/main/resources/templates/withdrawLogin.html
+++ b/api/src/main/resources/templates/withdrawLogin.html
@@ -34,6 +34,11 @@
                     <img class="Button" th:src="@{/kakaoLogin.png}">
                 </a>
             </div>
+            <div class="oauthButton" style="margin: 30px 0 0 0">
+                <a th:href="${appleRedirectUrl}">
+                    <img class="Button" th:src="@{/appleLogin.png}">
+                </a>
+            </div>
         </div>
     </div>
     <div class="Logo">
diff --git a/client/src/main/kotlin/com/oksusu/susu/client/config/OAuthUrlConfig.kt b/client/src/main/kotlin/com/oksusu/susu/client/config/OAuthUrlConfig.kt
index 40507557..d1089ad7 100644
--- a/client/src/main/kotlin/com/oksusu/susu/client/config/OAuthUrlConfig.kt
+++ b/client/src/main/kotlin/com/oksusu/susu/client/config/OAuthUrlConfig.kt
@@ -39,18 +39,13 @@ class OAuthUrlConfig(
 
     @ConfigurationProperties(prefix = "oauth-url.apple")
     class AppleOAuthUrlConfig(
-        val appleIdUrl: String, // https://appleid.apple.com
-        val redirectUrl: String, // https://www.allchive.co.kr/api/auth/oauth/login/APPLE/dev
-        val webCallbackUrl: String, // apple/callback
+        val appleIdUrl: String,
+        val devCallbackUrl: String,
         val withdrawCallbackUrl: String,
         val authorizeUrl: String,
-        // /auth/authorize?client_id=%s&redirect_uri=%s&response_type=code
         val tokenUrl: String,
-        // /auth/token?grant_type=authorization_code&client_id=%s&redirect_uri=%s&code=%s&client_secret=%s
         val oidcKeyUrl: String,
-        // /auth/keys
         val withdrawUrl: String,
-        // /auth/revoke
     )
 
     @ConfigurationProperties(prefix = "oauth-url.google")
diff --git a/client/src/main/kotlin/com/oksusu/susu/client/oauth/apple/SuspendableAppleClient.kt b/client/src/main/kotlin/com/oksusu/susu/client/oauth/apple/SuspendableAppleClient.kt
index de092f12..a145df48 100644
--- a/client/src/main/kotlin/com/oksusu/susu/client/oauth/apple/SuspendableAppleClient.kt
+++ b/client/src/main/kotlin/com/oksusu/susu/client/oauth/apple/SuspendableAppleClient.kt
@@ -3,8 +3,10 @@ package com.oksusu.susu.client.oauth.apple
 import com.oksusu.susu.client.config.OAuthUrlConfig
 import com.oksusu.susu.client.oauth.apple.model.AppleOAuthTokenResponse
 import com.oksusu.susu.client.oauth.oidc.model.OidcPublicKeysResponse
+import com.oksusu.susu.common.extension.awaitSingleOptionalOrThrow
+import com.oksusu.susu.common.extension.awaitSingleOrThrow
 import io.github.oshai.kotlinlogging.KotlinLogging
-import kotlinx.coroutines.reactor.awaitSingle
+import org.springframework.http.MediaType
 import org.springframework.web.reactive.function.client.WebClient
 
 class SuspendableAppleClient(
@@ -28,9 +30,10 @@ class SuspendableAppleClient(
         )
         return webClient.post()
             .uri(url)
+            .contentType(MediaType.APPLICATION_FORM_URLENCODED)
             .retrieve()
             .bodyToMono(AppleOAuthTokenResponse::class.java)
-            .awaitSingle()
+            .awaitSingleOrThrow()
     }
 
     override suspend fun getOidcPublicKeys(): OidcPublicKeysResponse {
@@ -39,7 +42,7 @@ class SuspendableAppleClient(
             .uri(url)
             .retrieve()
             .bodyToMono(OidcPublicKeysResponse::class.java)
-            .awaitSingle()
+            .awaitSingleOrThrow()
     }
 
     override suspend fun withdraw(clientId: String, clientSecret: String, token: String) {
@@ -51,8 +54,9 @@ class SuspendableAppleClient(
         )
         return webClient.post()
             .uri(url)
+            .contentType(MediaType.APPLICATION_FORM_URLENCODED)
             .retrieve()
             .bodyToMono(Unit::class.java)
-            .awaitSingle()
+            .awaitSingleOptionalOrThrow() ?: Unit
     }
 }
diff --git a/client/src/main/kotlin/com/oksusu/susu/client/oauth/google/SuspendableGoogleClient.kt b/client/src/main/kotlin/com/oksusu/susu/client/oauth/google/SuspendableGoogleClient.kt
index 2e86b917..68387f65 100644
--- a/client/src/main/kotlin/com/oksusu/susu/client/oauth/google/SuspendableGoogleClient.kt
+++ b/client/src/main/kotlin/com/oksusu/susu/client/oauth/google/SuspendableGoogleClient.kt
@@ -3,8 +3,8 @@ package com.oksusu.susu.client.oauth.google
 import com.oksusu.susu.client.config.OAuthUrlConfig
 import com.oksusu.susu.client.oauth.google.model.GoogleOAuthTokenResponse
 import com.oksusu.susu.client.oauth.google.model.GoogleOAuthUserInfoResponse
+import com.oksusu.susu.common.extension.awaitSingleOrThrow
 import io.github.oshai.kotlinlogging.KotlinLogging
-import kotlinx.coroutines.reactor.awaitSingle
 import org.springframework.http.MediaType
 import org.springframework.web.reactive.function.client.WebClient
 
@@ -31,7 +31,7 @@ class SuspendableGoogleClient(
             .bodyValue(formParams)
             .retrieve()
             .bodyToMono(GoogleOAuthTokenResponse::class.java)
-            .awaitSingle()
+            .awaitSingleOrThrow()
     }
 
     override suspend fun getUserInfo(accessToken: String): GoogleOAuthUserInfoResponse {
@@ -44,7 +44,7 @@ class SuspendableGoogleClient(
             .uri(url)
             .retrieve()
             .bodyToMono(GoogleOAuthUserInfoResponse::class.java)
-            .awaitSingle()
+            .awaitSingleOrThrow()
     }
 
     override suspend fun withdraw(accessToken: String): String? {
@@ -57,6 +57,6 @@ class SuspendableGoogleClient(
             .uri(url)
             .retrieve()
             .bodyToMono(String::class.java)
-            .awaitSingle()
+            .awaitSingleOrThrow()
     }
 }
diff --git a/client/src/main/kotlin/com/oksusu/susu/client/oauth/kakao/SuspendableKakaoClient.kt b/client/src/main/kotlin/com/oksusu/susu/client/oauth/kakao/SuspendableKakaoClient.kt
index d016c11e..646ce775 100644
--- a/client/src/main/kotlin/com/oksusu/susu/client/oauth/kakao/SuspendableKakaoClient.kt
+++ b/client/src/main/kotlin/com/oksusu/susu/client/oauth/kakao/SuspendableKakaoClient.kt
@@ -6,8 +6,8 @@ import com.oksusu.susu.client.oauth.kakao.model.KakaoOAuthUserInfoResponse
 import com.oksusu.susu.client.oauth.kakao.model.KakaoOAuthWithdrawResponse
 import com.oksusu.susu.common.consts.BEARER
 import com.oksusu.susu.common.consts.KAKAO_AK
+import com.oksusu.susu.common.extension.awaitSingleOrThrow
 import io.github.oshai.kotlinlogging.KotlinLogging
-import kotlinx.coroutines.reactor.awaitSingle
 import org.springframework.util.LinkedMultiValueMap
 import org.springframework.web.reactive.function.BodyInserters
 import org.springframework.web.reactive.function.client.WebClient
@@ -35,7 +35,7 @@ class SuspendableKakaoClient(
             .uri(url)
             .retrieve()
             .bodyToMono(KakaoOAuthTokenResponse::class.java)
-            .awaitSingle()
+            .awaitSingleOrThrow()
     }
 
     override suspend fun getUserInfo(
@@ -46,7 +46,7 @@ class SuspendableKakaoClient(
             .header("Authorization", BEARER + accessToken)
             .retrieve()
             .bodyToMono(KakaoOAuthUserInfoResponse::class.java)
-            .awaitSingle()
+            .awaitSingleOrThrow()
     }
 
     override suspend fun withdraw(targetId: String, adminKey: String): KakaoOAuthWithdrawResponse? {
@@ -64,6 +64,6 @@ class SuspendableKakaoClient(
             .body(BodyInserters.fromFormData(multiValueMap))
             .retrieve()
             .bodyToMono(KakaoOAuthWithdrawResponse::class.java)
-            .awaitSingle()
+            .awaitSingleOrThrow()
     }
 }
diff --git a/client/src/main/resources/application-client.yml b/client/src/main/resources/application-client.yml
index a825d27e..f94b2477 100644
--- a/client/src/main/resources/application-client.yml
+++ b/client/src/main/resources/application-client.yml
@@ -21,8 +21,7 @@ oauth-url:
 
   apple:
     apple-id-url: ${APPLE_APPLEID_URL}
-    redirect-url: ${APPLE_REDIRECT}
-    web-callback-url: ${APPLE_WEB_CALLBACK}
+    dev-callback-url: ${APPLE_DEV_CALLBACK_URL}
     withdraw-callback-url: ${APPLE_WITHDRAW_CALLBACK_URL}
     authorize-url: ${APPLE_AUTHORIZE_URL}
     token-url: ${APPLE_TOKEN_URL}
diff --git a/common/src/main/kotlin/com/oksusu/susu/common/extension/ReactorExtension.kt b/common/src/main/kotlin/com/oksusu/susu/common/extension/ReactorExtension.kt
new file mode 100644
index 00000000..d185594e
--- /dev/null
+++ b/common/src/main/kotlin/com/oksusu/susu/common/extension/ReactorExtension.kt
@@ -0,0 +1,23 @@
+package com.oksusu.susu.common.extension
+
+import io.github.oshai.kotlinlogging.KotlinLogging
+import kotlinx.coroutines.reactive.awaitSingle
+import kotlinx.coroutines.reactor.awaitSingleOrNull
+import org.springframework.web.reactive.function.client.WebClientResponseException
+import reactor.core.publisher.Mono
+
+private val logger = KotlinLogging.logger { }
+
+suspend fun <T> Mono<T>.awaitSingleOrThrow(): T {
+    return this.onErrorResume(WebClientResponseException::class.java) { ex ->
+        logger.info { "${ex.request?.uri} ${ex.responseBodyAsString}" }
+        Mono.error(ex)
+    }.awaitSingle()
+}
+
+suspend fun <T> Mono<T>.awaitSingleOptionalOrThrow(): T? {
+    return this.onErrorResume(WebClientResponseException::class.java) { ex ->
+        logger.info { "${ex.request?.uri} ${ex.responseBodyAsString}" }
+        Mono.error(ex)
+    }.awaitSingleOrNull()
+}