OAuth

Social / IdP sign-in for end users (dashboard-configured providers)

📄️Start OAuth sign-in

Returns an authorization URL. Redirect the user’s browser there. The provider must be configured and enabled for this project. Optional JSON body sets `redirectUrl` (otherwise dashboard / project defaults apply).

📄️OAuth callback (browser)

Handled by the identity provider’s redirect. **Do not call from your backend.** On success, redirects to your `redirect_url` with `code` and `provider` query params (and optional `state`). On failure may redirect with `error` or return JSON/text errors.

📄️Exchange OAuth code for session

Server-side only. Exchange the `code` from your redirect URL for Locksmith RS256 access + refresh tokens.