How it Works?
OAuth
How CakeAuth integrates with various OAuth providers securely
CakeAuth provides seamless integration with popular OAuth providers, allowing your users to authenticate using their existing social accounts.
Supported Providers
Currently, CakeAuth supports the following providers:
The list of supported providers are growing overtime.
How It Works
- The process begins when a User requests access from the Client
- The Client sends an authorization request to the OAuth Providers (e.g Google, or GitHub)
- If the user isn't logged in:
- OAuth Providers prompts the user for login
- User provides their credentials
- User grants consent for the requested permissions
- After that, the OAuth providers will call a callback to the set callback target (by default to CakeAuth servers)
- OAuth Providers exchanges the code with CakeAuth for a token
- CakeAuth sends back both an access token and session token to the Client
- Finally, the user is authorized
After the initial authentication process is done, the client follows the default token refresh mechanism.
Next Steps
Last updated on