stevaidis/dev
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Update OAuth2-Front-Approach.md

Browse Source
This commit is contained in:
Ste Vaidis 2024-12-15 19:18:24 +02:00
parent 1e50fd8a0f
commit f9af5b89ba
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
OAuth2-Front-Approach.md
View File

@ -43,7 +43,7 @@ A way for the `user` to tell `google` to give an access token to `xorismesiti.gr
1. A button "Login with Google" redirects the user to the Google's authorization endpoint `accounts.google.com/o/oauth2/v2/auth` 1. A button "Login with Google" redirects the user to the Google's authorization endpoint `accounts.google.com/o/oauth2/v2/auth`
2. After the redirection, the user will log in to Google and grant permissions (if they havent already). 2. After the redirection, the user will log in to Google and grant permissions (if they havent already).
3. Google will redirect the user back to your redirect_uri `https://xorismesiti.gr/callback` with an authorization code `?code=` 3. Google will redirect the user back to your redirect_uri `https://xorismesiti.gr/callback` with an authorization code `?code=ABC123`
*Security: the state string should be validated upon receiving the response from Google, as it ensures that the response corresponds to the request.* *Security: the state string should be validated upon receiving the response from Google, as it ensures that the response corresponds to the request.*
@ -277,7 +277,7 @@ app.listen(3000, () => {
<br> <br>
### 2.3 Front ### 2.3 Frontend
The frontend gets the tokens from the backend response, The frontend gets the tokens from the backend response,