Start an explicitly enabled OAuth flow through the API proxy

import requests

url = "https://api.13-215-85-171.sslip.io/v1/auth/oauth/start"

payload = { "redirect_to": "https://console.example.com/keys" }
headers = {"Content-Type": "application/json"}

response = requests.post(url, json=payload, headers=headers)

print(response.text)

{
  "url": "<string>"
}

Auth

Start an explicitly enabled OAuth flow through the API proxy

Dormant during the private-beta key-only e2e. This route requires both NULLSPACE_SELF_SERVE_AUTH_ENABLED=true and NULLSPACE_AUTH_OAUTH_ENABLED=true, then returns a Supabase Auth provider URL for Google or GitHub after applying API-side Turnstile and signup-attempt throttles. Because Supabase provider authorize endpoints are public once a provider is enabled, production deployments must also keep Supabase-native Auth backstops configured.

POST

auth

oauth

start

Start an explicitly enabled OAuth flow through the API proxy

import requests

url = "https://api.13-215-85-171.sslip.io/v1/auth/oauth/start"

payload = { "redirect_to": "https://console.example.com/keys" }
headers = {"Content-Type": "application/json"}

response = requests.post(url, json=payload, headers=headers)

print(response.text)

{
  "url": "<string>"
}

Body

application/json

provider

enum<string>

required

Available options:

google,

github

redirect_to

string

required

Console redirect URL passed through to Supabase Auth.

Example:

"https://console.example.com/keys"

captcha_token

string | null

Required when Auth CAPTCHA is enabled; validated before returning the provider URL.

Response

OAuth provider redirect URL

url

string<uri>

required

Supabase Auth provider URL that the browser should navigate to.

Sign in through the gated failed-login lockout proxy Send a password reset email through the gated abuse-controlled proxy