I found out that you can call cancel on the ASAuthorizationController and try again. Still does not make sense to me why you should have to do that. If you get an ASAuthorizationError with code cancelled you would assume the request is canceled and that you don't have to cancel it manually again. (Seems like a bug)