search

User Consent & Callback

(Authorization Endpoint)

Spooky Services Authorization Endpoint is at https://hub.spookysrv.com/oauth2/authorize/arrow-up-right

The URL should be structured as follows: https://hub.spookysrv.com/oauth2/authorize/?client_id=[CLIENT_ID]&response_type=code&redirect_uri=[REDIRECT_URI]&scope=avatar+identify

GET Parameters:

  • client_id: Client ID of your application, provided at info page

  • response_type: must be code

  • redirect_uri: must be equal to the redirect uri set for your application, url-encoded

  • scope: requesting scopes, separated by +

  • state: optional, for your own use only, will be returned exactly as is in callback if provided

circle-exclamation

ALL OAuth2 requests MUST include the "identify" scope

hashtag
Callback

After user accepts the consent request, they will be redirected to the RedirectURI you provided.

The following GET parameters will be included:

  • code: Use this on the token endpoint to get UserInfo (Access Token)

  • scope: The scope you requested separated by +

  • state: the state exactly as you provided, does not save on our side

PreviousEndpoints & OIDCNextToken Endpoint & Refresh

Last updated