OAuth 2.0 Authorize Endpoint
Use open source libraries to perform OAuth 2.0 and OpenID Connect available for any programming language. You can find a list of libraries at https://oauth.net/code/
For now, you can only use grant_type authorization_code
and refresh_token
in the /oauth2/token endpoint
Query Parameters
Possible values: [code
, token
, id_token
, code token
]
The type of response expected from the OAuth2 server
The client id that you already created.
Where to redirect after the oauth2 process completed
The scopes that you want to request, separated by spaces
Form of security measure used in OAuth 2.0 to help prevent cross-site request forgery (CSRF)
- 302
- error
On Success, user will be redirected to redirect_uri
with the query parameters code
and state
.
On Error, user will also be redirected to https://auth.quran.foundation/oauth-error with the query params as mentioned below
Schema
Error
Error Debug Information
Only available in dev mode.
Error Description
Error Hint
Helps the user identify the error cause.
HTTP Status Code
{
"error": "invalid_client",
"error_debug": "string",
"error_description": "Client+authentication+failed+%28e.g.%2C+unknown+client%2C+no+client+authentication+included%2C+or+unsupported+authentication+method%29.+The+requested+OAuth+2.0+Client+does+not+exist.",
"error_hint": "The redirect URL is not allowed.",
"status_code": 401
}