Begin social sign-in: 302 to the provider's authorization page. Public (the browser navigates here directly), so the tenant is named in the path.
GET
Public operationId: oauth_start/v1/auth/oauth/{application_id}/{provider}/start Authorization
No credential required — these endpoints are reachable without authentication.
Path parameters
application_idstring<uuid> requiredPublishable application id
providerstring requiredgoogle | github | microsoft | apple | ...
Query parameters
return_tostring optionalPost-sign-in return URL
Responses
302 Redirect to the provider
422 Provider not enabled / not configured
Request
curl -X GET "http://localhost:8080/v1/auth/oauth/018f3c4a-7b2e-7c1d-9e0a-1f2b3c4d5e6f/string/start" \Try it
live requestGET
http://localhost:8080/v1/auth/oauth/018f3c4a-7b2e-7c1d-9e0a-1f2b3c4d5e6f/string/start