You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Is it a way not make Github call directly backend, but let Github call frontend first, and frontend call gh-auth-complete in backend and pass code?
#91
I did setup Imperial as tutorial says, but when a GET is sent with http://localhost:8080/gh-auth-complete?code=1c529782861a44782488 then it refuses, it does not have access-token.
My frontend and backend is separated. I would use Oauth 2.0 in the official way, Github -> frontend -> backend.
Is it possible to pass only code and check its validity in a next communication sequence?
The text was updated successfully, but these errors were encountered:
j4nos
changed the title
Is it a way not make Github call directly gh-auth-complete endpoint, but call frontend first, and frontend call gh-auth-complete in backend and pass code?
Is it a way not make Github call directly gh-auth-complete endpoint, but let Github call frontend first, and frontend call gh-auth-complete in backend and pass code?
Oct 5, 2022
j4nos
changed the title
Is it a way not make Github call directly gh-auth-complete endpoint, but let Github call frontend first, and frontend call gh-auth-complete in backend and pass code?
Is it a way not make Github call directly backend, but let Github call frontend first, and frontend call gh-auth-complete in backend and pass code?
Oct 5, 2022
Also, to clarify - GH calls the URL that you specify in the redirect. You probably want to handle it all in the backend to keep it secure then pass a user/token/success to the front end when complete
I did setup Imperial as tutorial says, but when a GET is sent with
http://localhost:8080/gh-auth-complete?code=1c529782861a44782488
then it refuses, it does not haveaccess-token
.My frontend and backend is separated. I would use Oauth 2.0 in the official way, Github -> frontend -> backend.
Is it possible to pass only
code
and check its validity in a next communication sequence?The text was updated successfully, but these errors were encountered: