Welcome to the Easyoauth example project. Inside this repository you will find documentation on how you can integrate your own front-end web app with your Easyoauth project, as well as a boilerplate React App that demonstrates how you might use the Easyoauth API.
Before you get started, sign in to Easyoauth at easyoauth.com.
Check out how to get started with the Example App or continue reading the Easyoauth API documentation below.
Before diving in, you should have already configured your OAuth app with your chosen provider e.g. Facebook, Slack, Github etc and created a project in Easyoauth that connects it to the provider. When creating a project, Easyoauth will generate three unique URL's for you:
- A login endpoint
- An authorization endpoint
- A request proxy endpoint
The following steps describe the OAuth dance and how these endpoints fit into it.
- The Login Endpoint is used to trigger the browser to redirect to the OAuth providers login page.
- Credentials are entered into the form by the user and submitted.
- The Oauth provider redirects the browser back to your specified redirect URI (your web app) with a short-lived authorization code in the URL.
- Your web app must extract the short-lived code and send it in a request to the Authorization Endpoint.
- Easyoauth exchanges the short-lived code for an access token. The connection is now established.
- Easyoauth provides your web app with a secure token that allow your web app to make secure requests to your OAuth providers API using the Request Proxy Endpoint.
This endpoint is used to trigger Easyoauth to redirect your web app to the OAuth providers login page. The URL should be anchored to an HTML link element, like as follows:
<a href="https://app.easyoauth.com/connect/:project_id/login">Login</a>
You would typically embed this link element in your web app's login page.
This endpoint will tell Easyoauth to retrieve an access token from your configured OAuth provider.
https://app.easyoauth.com/connect/:project_id/authorize/
Your web app must make a POST request to this endpoint. This would need to be executed from your web app's page that you have configured your OAuth provider to redirect to.
{
"code": "ABC123"
}This is the short-lived authorization code that the OAuth provider should include as a query parameter in the URL once redirecting from the provider login page back to your web app. You web app must extract this query parameter from the URL and add it to the request body.
{
"easyoauth_token": "123ABC",
}This endpoint allows you to proxy requests through to your OAuth providers API via Easyoauth as so to avoid CORS errors.
https://app.easyoauth.com/connect/:project_id/proxy-request/
Your web app must make a POST request to this endpoint. The easyoauth_token retrieved in the previous step must also be added as an authorization header.
"authorization": "your easyoauth token"{
"url": "https://example.com/some/endpoint", // The API endpoint to proxy to (required)
"method": "get", // e.g. get, post, put, patch or delete (required)
"payload": `{ "foo": "Easyoauth bar" }`, // If you have data to send in your request (optional)
"auth_header_prefix": "token" // Will default to Bearer if not supplied (optional)
}These parameters must be added to the request body.
If the request has proxied successfully, then the response from the specified url will be returned.
Before you run the example app, first make sure that you have created an OAuth app with your OAuth provider and that you have created an Easyoauth account and created a project that connects to the OAuth provider.
Clone this repository, ensure you have Node installed on your machine.
Now create a file named .env in the repos root with the following contents:
LOGIN_ENDPOINT=https://app.easyoauth.com/connect/:project_id/login/
AUTHORIZATION_ENDPOINT=https://app.easyoauth.com/connect/:project_id/authorize/
REQUEST_PROXY_ENDPOINT=https://app.easyoauth.com/connect/:project_id/proxy-request/- LOGIN_ENDPOINT needs to be your Easyoauth projects Login endpoint.
- AUTHORIZATION_ENDPOINT needs to be your Easyoauth projects Authorization endpoint.
- REQUEST_PROXY_ENDPOINT needs to be your Easyoauth projects Proxy Request endpoint.
These endpoints are generated when you create your Easyoauth project.
You can also add the following optional environment variable that demonstrates the usage of the proxy request endpoint in the example app:
- OAUTH_PROFILE_ENDPOINT an endpoint exposed by your OAuth provider that retrieves information about the current authenticated user.
Now inside the cloned repo run:
npm install
npm startThe example app should now be available in your web browser at http://localhost:8080.