POST
/
signin
/
provider
/
{provider}
/
callback
OAuth2 provider callback endpoint (form_post)
curl --request POST \
  --url https://{subdomain}.auth.{region}.nhost.run/v1/signin/provider/{provider}/callback \
  --header 'Content-Type: application/x-www-form-urlencoded' \
  --data 'code=<string>' \
  --data 'id_token=<string>' \
  --data 'state=<string>' \
  --data 'user=<string>' \
  --data 'error=<string>' \
  --data 'error_description=<string>' \
  --data 'error_uri=<string>'
This response has no body data.

Path Parameters

provider
enum<string>
required
deprecated

The name of the social provider

Available options:
apple,
github,
google,
linkedin,
discord,
spotify,
twitch,
gitlab,
bitbucket,
workos,
azuread,
strava,
facebook,
windowslive,
twitter

Body

application/x-www-form-urlencoded

OAuth2 provider callback data including authorization code, ID token, and state

state
string
required

State parameter to avoid CSRF attacks

code
string | null

Authorization code provided by the authentication provider

id_token
string | null

ID token provided by the authentication provider

user
string | null

JSON string containing user information (only provided on first authentication with Apple)

error
string | null

Error message if authentication failed

error_description
string | null

Detailed error description if authentication failed

error_uri
string | null

URI with more information about the error