AppAuth for JavaScript

AppAuth for JS

AppAuth for JavaScript is a client SDK for public clients designed for communicating with OAuth 2.0 and OpenID Connect providers.

It follows the security best practices outlined in RFC 8252 - OAuth 2.0 for Native Apps. The library is versatile and can be used in:

  • Web Apps (Browser-based)
  • Node.js CLI applications
  • Chrome Apps
  • Electron applications

Key Features

  • Spec Compliant: Strives to directly map the requests and responses of OAuth 2.0 and OIDC specifications.
  • PKCE Support: Built-in support for the PKCE extension to secure authorization codes in public clients.
  • Extensible: Ability to handle additional custom parameters in all protocol requests and responses.
  • Environment Agnostic: Includes specific implementations for both Browser and Node.js environments.
  • TypeScript Ready: Written in TypeScript for strong typing and better developer experience.