Authorize

The endpoint where the user is redirected to authenticate and authorize the client application. The target location of redirection may change depending on various cases, such as:

If a social or enterprise connection defined with connection parameter, it will redirect to the defined provider
If end-user is already authenticated, they will redirect back to the application by using the URL passed in parameter redirect_uri
If end-user does not contain any session, they will be redirected to PlusAuth Login Page.

You can append any additional parameters to the request. PlusAuth recognizes OpenID Connect parameters and takes action accordingly. In case you need custom parameters for your business requirements, make sure to define them in Dashboard > Settings > General > Additional Parameters

Query Parameters

client_id
string
Zorunlu

The client identifier.

redirect_uri
string
Zorunlu

The URI to redirect the user back to after authorization is complete. This URI must be registered to your client from Dashboard > Clients > [Your Client Details] > Redirect Uris.

response_type
string
Zorunlu

The type of response expected from the authorization server. Should be 'code' for Authorization Code Flow.

state
string
Zorunlu

An opaque value randomly generated used by the client to maintain state between the request and callback.

scope
string

The requested permissions (scopes) to be granted to the End-User.

Notes

If prompt parameter used the resulting PlusAuth page will be selected accordingly. For ex.: with prompt=login the user will redirected to the login page even if they already have a session.

Response:

302

Authorize

Query Parameters

client_idstringZorunlu

redirect_uristringZorunlu

response_typestringZorunlu