OAuth 2.0 implementation for various providers in one place.
This project contains OAuth 2.0 implementation for various providers and helps you understand OAuth 2.0 flow:
- Show platform dialog
- Get Access Token
- Use token to fetch user details
Although this project is build using React for frontend and NodeJS for backend, the flow and implementation largely remains same for any other language or framework.
- Read official flow: https://developers.facebook.com/docs/facebook-login/manually-build-a-login-flow
- Create a new application: https://developers.facebook.com/apps/
- Goto App β Add Product and choose Facebook Login
- Goto App β Products β Facebook Login β Settings and add a
Valid OAuth Redirect URI
ashttps://example.com/authorize/
(replace your actual domain for live) - Goto App β Settings and copy
App ID
andApp Secret
- Update
web/.env.local
REACT_APP_OAUTH_FACEBOOK_ID
withApp ID
- Update
api/.env.local
OAUTH_FACEBOOK_ID
withApp ID
- Update
api/.env.local
OAUTH_FACEBOOK_SECRET
withApp Secret
- Read official flow: https://developers.google.com/identity/protocols/oauth2/web-server
- Create a new application: https://console.cloud.google.com/projectcreate
- Setup consent screen https://console.cloud.google.com/apis/credentials/consent
- Choose
External
(Available to any user with a Google Account.) - In
Authorized domains
input enterexample.com
- Fill in
Application Name
and clickSave
button
- Choose
- Create Credentials https://console.cloud.google.com/apis/credentials
- Click on
+ CREATE CREDENTIALS
button - Choose
OAuth client ID
- Select
Web application
- For
Authorized redirect URIs
, fill in following two entries:https://example.com/authorize/
http://localhost:3000/authorize/
- Click on
- Copy
Your Client ID
andYour Client Secret
- Update
web/.env.local
REACT_APP_OAUTH_GOOGLE_ID
withYour Client ID
- Update
api/.env.local
OAUTH_GOOGLE_ID
withYour Client ID
- Update
api/.env.local
OAUTH_GOOGLE_SECRET
withYour Client Secret
-
Read official flow: https://developers.facebook.com/docs/instagram-basic-display-api/getting-started
-
Create a new application: https://developers.facebook.com/apps/
-
Goto App β Settings β Basic and fill in all the required fields
-
Goto App β Add Product and choose Instagram Basic Display
-
Click on
Create New App
button -
Goto App β Products β Basic Display and fill in following
Valid OAuth Redirect URIs
ashttps://example.com/authorize/
Deauthorize Callback URL
ashttps://example.com/authorize/instagram-deauthorize
Data Deletion Request URL
ashttps://example.com/authorize/instagram-delete
-
Goto App β Products β Basic Display β Roles β Roles and click on
Add Instagram Testers
, search for your account and click onSubmit
-
Accept the tester invite https://www.instagram.com/accounts/manage_access/
-
Goto App β Products β Basic Display and copy
Instagram App ID
andInstagram App Secret
-
Update
web/.env.local
REACT_APP_OAUTH_INSTAGRAM_ID
withInstagram App ID
-
Update
api/.env.local
OAUTH_INSTAGRAM_ID
withInstagram App ID
-
Update
api/.env.local
OAUTH_INSTAGRAM_SECRET
withInstagram App Secret
-
Note:
- As of writing this Readme, Instagram does not accept
localhost:3000
as valid callback URI. So while testing, you may need to manually change the callback URL. - For production, you need to complete
App Review for Instagram Basic Display
by submittinginstagram_graph_user_profile
andinstagram_graph_user_media
for review.
- As of writing this Readme, Instagram does not accept
- Read official flow: https://github.com/reddit-archive/reddit/wiki/OAuth2
- Create a new OAuth application: https://www.reddit.com/prefs/apps and fill in following:
name
enter your application name, eg:Example
description
enter info about your app, eg:OAuth example application
about url
enter your website url, eg:https://example.com
redirect uri
:- For development, enter
http://localhost:3000/authorize/
- For production, enter
https://example.com/authorize/
- For development, enter
- Click on
create app
button - Copy
id
(below the entered app name) andsecret
- Update
web/.env.local
REACT_APP_OAUTH_REDDIT_ID
withid
- Update
api/.env.local
OAUTH_REDDIT_ID
withid
- Update
api/.env.local
OAUTH_REDDIT_SECRET
withsecret
- Read official flow: https://discord.com/developers/docs/topics/oauth2
- Create a new OAuth application: https://discord.com/developers/applications and click on
New Application
- Fill in
name
, eg:Example
and click onCreate
button - Go to application's OAuth section https://discord.com/developers/applications/CLIENT_ID/oauth2 and for
Redirects
, create following two entries:http://localhost:3000/authorize/
for developmenthttps://example.com/authorize/
for production
- Copy
CLIENT ID
(below the entered app name) andCLIENT SECRET
- Update
web/.env.local
REACT_APP_OAUTH_DISCORD_ID
withCLIENT ID
- Update
api/.env.local
OAUTH_DISCORD_ID
withCLIENT ID
- Update
api/.env.local
OAUTH_DISCORD_SECRET
withCLIENT SECRET
- Read official flow: https://developer.github.com/apps/building-oauth-apps/authorizing-oauth-apps
- Create a new OAuth application: https://github.com/settings/applications/new and fill in following:
Application name
enter your application name, eg:Example
Homepage URL
enter your website url, eg:https://example.com
Authorization callback URL
:- For development, enter
http://localhost:3000/authorize/
- For production, enter
https://example.com/authorize/
- For development, enter
- Copy
Client ID
andClient Secret
- Update
web/.env.local
REACT_APP_OAUTH_GITHUB_ID
withClient ID
- Update
api/.env.local
OAUTH_GITHUB_ID
withClient ID
- Update
api/.env.local
OAUTH_GITHUB_SECRET
withClient Secret
- Read official flow: https://docs.gitlab.com/ee/api/oauth2.html#web-application-flow
- Create a new OAuth application: https://gitlab.com/profile/applications and fill in following:
Name
enter your application name, eg:Example
Homepage URL
enter your website url, eg:https://example.com
Authorization callback URL
enterhttp://localhost:3000/authorize/
and on new linehttps://example.com/authorize/
- For
Scopes
checkread_user
,profile
andemail
- Click on
Save application
button and copyApplication ID
andSecret
- Update
web/.env.local
REACT_APP_OAUTH_GITLAB_ID
withApplication ID
- Update
api/.env.local
OAUTH_GITLAB_ID
withApplication ID
- Update
api/.env.local
OAUTH_GITLAB_SECRET
withSecret
- Read official flow: https://docs.gitlab.com/ee/api/oauth2.html#web-application-flow
- Create a new OAuth application: https://cloud.digitalocean.com/account/api/applications/new and fill in following:
Name
enter your application name, eg:Example
Homepage URL
enter your website url, eg:https://example.com
Description
enter info about your app, eg:OAuth example application
Authorization callback URL
:- For development, enter
http://localhost:3000/authorize/
- For production, enter
https://example.com/authorize/
- For development, enter
- Click on
Save
button - Click on More β View and copy
Client ID
andClient Secret
- Update
web/.env.local
REACT_APP_OAUTH_DIGITALOCEAN_ID
withClient ID
- Update
api/.env.local
OAUTH_DIGITALOCEAN_ID
withClient ID
- Update
api/.env.local
OAUTH_DIGITALOCEAN_SECRET
withClient Secret
- Read official flow: https://confluence.atlassian.com/bitbucket/oauth-on-bitbucket-cloud-238027431.html
- Create a new OAuth application: https://bitbucket.org/USERNAME/workspace/settings/oauth-consumers/new and fill in following:
Name
enter your application name, eg:Example
Homepage URL
enter your website url, eg:https://example.com
Description
enter info about your app, eg:OAuth example application
Callback URL
:- For development, enter
http://localhost:3000/authorize/
- For production, enter
https://example.com/authorize/
- For development, enter
- Under
Permissions β Account
checkEmail
andRead
- Click on
Save
button - Click on Name of your application and copy
Key
andSecret
- Update
web/.env.local
REACT_APP_OAUTH_BITBUCKET_ID
withKey
- Update
api/.env.local
OAUTH_BITBUCKET_ID
withKey
- Update
api/.env.local
OAUTH_BITBUCKET_SECRET
withSecret
- Read official flow: https://docs.microsoft.com/en-us/azure/active-directory/develop/v2-oauth2-auth-code-flow
- Create a new OAuth application: https://portal.azure.com/#blade/Microsoft_AAD_RegisteredApps/ApplicationsListBlade and fill in following:
Name
enter your application name, eg:Example
Supported account types
chooseAccounts in any organizational directory (Any Azure AD directory - Multitenant) and personal Microsoft accounts (e.g. Skype, Xbox)
Redirect URI
:- For development, enter
http://localhost:3000/authorize/
- For production, enter
https://example.com/authorize/
- For development, enter
- Goto Dashboard β App β Certificates & secrets and under
Client secrets
click on+ New client secret
- Enter
Description
, eg:Example Secret Key
- For
Expires
chooseNever
- Enter
- Click on
Add
button and copy theSecret
value - Click on Name of your application and copy
Application (client) ID
andSecret
- Update
web/.env.local
REACT_APP_OAUTH_AZURE_ID
withApplication (client) ID
- Update
api/.env.local
OAUTH_AZURE_ID
withApplication (client) ID
- Update
api/.env.local
OAUTH_AZURE_SECRET
withSecret
- Optionally, change
OAUTH_AZURE_TENANT
as per your requirement.
oauth
βββ api
β > PORT 4000
β > localhost:4000
β > api.example.com
β
βββ web
β > PORT 3000
β > localhost:3000
β > example.com
β
βββ README.md (you are here)
-
Prerequisites
- Node (
v12.x
) - MongoDB (
v4.x
) - IDE (Webstorm / Visual Studio Code)
- Node (
-
Clone repository
git clone git@github.com:atulmy/oauth.git oauth
-
API
- Switch to
api
directorycd oauth/api
- Configuration
- Create local environment file
cp .env.dev .env.local
- Edit
.env.local
forSECURITY_SECRET
,DATABASE_URL
andOAUTH_..
values
- Create local environment file
- Setup
- Install packages
npm install
- Install packages
- Run
- Start API server:
npm start
(http://localhost:4000)
- Start API server:
- Switch to
-
Web
- Switch to
web
directorycd oauth/web
- Configuration
- Create local environment file
cp .env.dev .env.local
- Edit
.env.local
forREACT_APP_OAUTH_..
values
- Create local environment file
- Setup
- Install packages
npm install
- Install packages
- Run
- Start web server:
npm start
(http://localhost:3000)
- Start web server:
- Switch to
Found an integration not working? Open an issue / Send a Pull Request with fixes.
Looking for a particular OAuth integration not yet added? Open an issue / Send a Pull Request with additional integrations.
- Atul Yadav - GitHub Β· Twitter
- [YOUR NAME HERE] - Feel free to contribute to the codebase by resolving any open issues, refactoring, adding new features, writing test cases or any other way to make the project better and helpful to the community. Feel free to fork and send pull requests.
Looking for a developer to build your next idea or need a developer to work remotely? Get in touch: atul.12788@gmail.com
If you liked this project, consider donating to support it β€οΈ
Copyright (c) 2020 Atul Yadav http://github.com/atulmy
The MIT License (http://www.opensource.org/licenses/mit-license.php)