Custom social provider login

Copy

• Copy for LLM

  Copy page as Markdown for LLMs
• View as Markdown

  Open this page as Markdown
• Open in ChatGPT

  Get insights from ChatGPT
• Open in Claude

  Get insights from Claude
• Connect to Cursor

  Install MCP server on Cursor
• Connect to VS Code

  Install MCP server on VS Code

Configure additional social login providers for your login box via OAuth.

Frontegg supports login box authentication via multiple Social Login Providers. For added flexibility, you can configure any custom social login provider via OAuth. This feature enables you to fully customize the social login experience beyond the built-in providers.

Follow these steps to set up a custom social login provider.

Step 1: Authenticate your environment

To configure a custom social provider, first authenticate your environment.

1. Navigate to [ENVIRONMENT] → Settings → General Settings to retrieve your environment’s credentials.
2. Ensure these credentials are available to complete the OAuth setup.

Step 2: Create your custom OAuth provider

To integrate your chosen social provider:

1. Visit the provider’s documentation to locate the necessary authorization endpoints.
2. Use the following POST request template to configure the provider, adding your provider’s token.

curl --location --request POST 'https://api.frontegg.com/frontegg/identity/resources/sso/custom/v1' \
--header 'Authorization: Bearer [token-from-environment-authentication]' \
--header 'Content-Type: application/json' \
--data-raw '{
            "type": "custom",
            "clientId": "xxxxxxx",
            "secret": "xxxxxxx",
            "authorizationUrl": "xxxxxxx",
            "userInfoUrl": "xxxxxxx",
            "scopes": "openid email profile",
            "displayName": "custom",
            "active": true,
            "redirectUrl": "https://[your-frontegg-subdomain].frontegg.com/oauth/account/social/success",
            "redirectUrlPattern": "https://[your-frontegg-subdomain].frontegg.com/oauth/account/social/success",
            "tokenUrl": "xxxxxxx",
            "ssoLogoUrl": "your-provider-logo-url"
        }'

Redirect URL configuration

Configure your redirect URLs based on your login method:

• Hosted Login: Set redirectUrl and redirectUrlPattern to:
  https://[your-frontegg-domain].frontegg.com/oauth/account/social/success.
• Embedded Login: Set redirectUrl and redirectUrlPattern to:
  [your-application-url]/account/social/success (e.g., http://localhost:3000/account/social/success).

Updating a custom OAuth provider

To update your OAuth provider’s configuration, submit a PATCH request. Only the secret key is mandatory.

curl --location --request PATCH 'https://api.frontegg.com/frontegg/identity/resources/sso/custom/v1/:{id}' \
--header 'Authorization: Bearer [token-from-environment-authentication]' \
--header 'Content-Type: application/json' \
--data-raw '{
            "secret": "xxxxxxx"
        }'

Deleting a Ccstom OAuth provider

To remove a custom OAuth provider, use the following DELETE request:

curl --location --request DELETE 'https://api.frontegg.com/frontegg/identity/resources/sso/custom/v1/:{id}' \
--header 'Authorization: Bearer [token-from-environment-authentication]' \
--header 'Content-Type: application/json'