stevaidis/dev
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Update OAuth2.md

Browse Source
This commit is contained in:
Ste Vaidis 2024-12-15 09:41:59 +02:00
parent c569964163
commit 870508fce4
1 changed files with 9 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
OAuth2.md
View File

@ -1,7 +1,7 @@
# 1. Authorization Request (User Initiates Login) # 1. Authorization Request (User Initiates Login)
A user visits the app `xorismesiti.gr` and clicks on the **Login with Google** button. A user clicks on the **Login with Google** button on the the app `xorismesiti.gr`.
The app request permission to access certain Google APIs (like the user's email, profile, etc.). The app request permission to access certain Google APIs (like the user's email, profile, etc.).
@ -19,3 +19,11 @@ GET https://accounts.google.com/o/oauth2/v2/auth?
- `redirect_uri`: The URI Google will redirect to after the user consents. - `redirect_uri`: The URI Google will redirect to after the user consents.
- `scope`: The permissions you're requesting (e.g., email, profile). - `scope`: The permissions you're requesting (e.g., email, profile).
- `state`: A random string to protect against CSRF attacks. - `state`: A random string to protect against CSRF attacks.
# 2. User Login and Consent
-The user is redirected to Google's login page.
-If they're not already logged in, they will be prompted to enter their Google credentials.
-After successful login, the user will be shown a consent screen where they can grant or deny permission for your app to access their Google account (e.g., email and profile information).
**User Action**: The user clicks "Allow" to grant access.