Authorize

When authenticating a user for a WorkOS Connect application, this is the endpoint they should be redirected to. If they’re not already logged in, the user will be redirected to the AuthKit login page. For a third-party application, AuthKit prompts the user to authorize access to the application the first time they use it, and again if the application requests new scopes or organization access. Existing consent skips the consent screen when requested scopes are the same as, or a subset of, scopes previously granted.

cURL

 curl https://<subdomain>.authkit.app/oauth2/authorize -G \
  -d "client_id=client_01JP8BD0CZ401TDF9X54NT5ZEK" \
  -d "nonce=4QWsQj7bUUkCXnoC" \
  --data-urlencode "redirect_uri=https://app.example.com/callback" \
  -d "response_type=code" \
  --data-urlencode "scope=openid profile email offline_access" \
  -d "state=GPc459ttUQhB9oPn"

GET

`/oauth2/authorize`

`Parameters`

`Returns`

TokenContinue to the next section

Up next

Authorize

/oauth2/authorize

Parameters

client_id: string

nonce: string

redirect_uri: string

response_type: "code"

scope: string

state?: string

code_challenge?: string

code_challenge_method?: "S256"

Returns

url: string

`/oauth2/authorize`

`Parameters`

`Returns`