Login Flow

Some web applications are purely frontend applications without a backend service. In such cases, the authorization code mode cannot be used, and the token must be stored on the frontend. OAuth2 specifies another method that allows tokens to be issued directly to the frontend. This method does not have the intermediate step of an authorization code, so it is called the "implicit" grant type (authorization code "hidden"), also known as the simplified authorization mode.

The overall flow of the simplified authorization code mode:

The user accesses the third-party application. The third-party application initiates an authorization login request to Zhuyun IDaaS. Note that the response_type parameter is set to token at this time. After the user logs in to Zhuyun IDaaS, Zhuyun IDaaS will redirect to the third-party application's callback address, carrying the access_token parameter.
The third-party application receives the access_token and calls the Zhuyun IDaaS API interface to obtain user information.

Note: After redirection, the access_token is located in the URL fragment, not in the query string (querystring).

# Development Steps

The Zhuyun IDaaS platform adopts the OAuth 2.0 implicit grant flow for integration. The development process is as follows:

# Step1: Implicit Grant Authentication

Click to view the Implicit Grant Authentication interface

# Step2: Get User Information

Click to view Get User Information

Get PKCE Access Token Implicit Grant Authorization

竹云IDaaS•开放平台

Login Flow

Login Flow

# Login Flow

# Development Steps

# Step1: Implicit Grant Authentication

# Step2: Get User Information