instant

Authentication and Permissions

GitHub OAuth

Instant supports logging users in with their GitHub account. GitHub uses OAuth 2.0 for authentication, which provides a secure way for users to sign in without sharing their passwords.

Choose the option that sounds best to you, and the rest of the document will show you how to add Sign in with GitHub to your app.

Building for Web?

Web Redirect

Standard OAuth flow with redirect-based authentication.

Building for React Native?

Expo Web Auth

Use Expo's auth session for browser-based sign-in in mobile apps.

Overview

There are three main steps:

  1. GitHub Developer Settings: Create an OAuth App.
  2. Instant Dashboard: Connect your OAuth App to Instant.
  3. Your app: Add code to log in with GitHub!

Let's dive deeper into each step:

1. Create an OAuth App

  1. Go to your GitHub account Developer settings.
  2. Click on "OAuth Apps" in the sidebar.
  3. Click "New OAuth App" (or "Register a new application" if it's your first).
  4. Fill in the application details:
    • Application name: Your app's name (users will see this)
    • Homepage URL: Your app's website
    • Authorization callback URL: https://api.instantdb.com/runtime/oauth/callback
  5. Click "Register application".
  6. After creation, you'll see your Client ID.
  7. Click "Generate a new client secret" to get your Client Secret.

2. Connect your OAuth App to Instant

Go to the Instant dashboard and select the Auth tab for your app.

Add your OAuth App on Instant

  • Click "Set up GitHub"
  • Enter a unique name for your client (e.g., "github-web")
  • Enter your "Client ID" from GitHub
  • Enter your "Client Secret" from GitHub
  • Click "Add Client"

Register your website with Instant

In the Auth tab, add the URL of the websites where you are using Instant to the Redirect Origins. If you're testing from localhost, add http://localhost:3000, replacing 3000 with the port you use. For production, add your website's domain.

And voila, you are connected!

3. Add some code!

Method: Web Redirect

Create an authorization URL via db.auth.createAuthorizationURL and then use the url to create a link. Here's a full example:

'use client';

import React from 'react';
import { init } from '@instantdb/react';

const APP_ID = '__APP_ID__';

const db = init({ appId: APP_ID });

export default function App() {
  const url = db.auth.createAuthorizationURL({
    // Use the GitHub client name from the Instant dashboard auth tab
    clientName: 'github-web',
    redirectURL: window.location.href,
  });

  return (
    <>
      <db.SignedIn>
        <UserInfo />
      </db.SignedIn>
      <db.SignedOut>
        <Login url={url} />
      </db.SignedOut>
    </>
  );
}

function UserInfo() {
  const user = db.useUser();
  return <h1>Hello {user.email}!</h1>;
}

function Login({ url }) {
  return <a href={url}>Log in with GitHub</a>;
}

When your users click on the link, they'll be redirected to GitHub to authorize your app, then back to your site.

Instant will automatically log them in to your app when they are redirected!

Scopes

GitHub uses OAuth scopes to control access. The basic scopes Instant requests are:

  • read:user - Read access to profile information
  • user:email - Read access to email addresses
Next
LinkedIn OAuth