https://linen.dev logo
#ask-community-for-troubleshooting
Title
# ask-community-for-troubleshooting
j

Jens Larsson

01/18/2022, 9:14 AM
Hi, I’m looking for some docs on how to use oauth with airbyte. We intend to send links to our clients where they do oauth-login, and are redirected back to our website at the end of the flow. I see Airbyte’s API exposes a few endpoints to manage oauth, is there support for an end-to-end flow where the refresh token is stored safely and automatically, or do we need to build our own credential manager to handle that?
👀 1
a

Augustin Lafanechere (Airbyte)

01/18/2022, 1:50 PM
Hi @Jens Larsson could you be a bit more specific about the context in which you'd like to use oauth? Is it for authenticating users to Airbyte our to a custom connector you're working on?
j

Jens Larsson

01/18/2022, 1:55 PM
So we are working with clients, and would like to easily set up connections to their Ecom-platforms to fetch and analyze their data. The way we’re doing it with Fivetran is we get an authentication URL for the connector, that we send to the customer. They click that link, which essentially takes them to the Ecom-platform Oauth login flow. After finishing the login, the callback is handled by Fivetran and a refresh-token stored in fivetran — which means we can refresh data ourselves using the customers’ auth.
So to achieve this in Airbyte we’re looking at hosting our own database for refresh-tokens, and build our own oauth url-generator and callback handler — but we realize too that to leverage this auth we’ll need to modify code in most Airbyte connectors so we’d be very keen to learn if there’s support for something similar in Airbyte already. Otherwise I’d be happy to discuss how we could contribute to it.
a

Augustin Lafanechere (Airbyte)

01/18/2022, 3:11 PM
@Jens Larsson I think we only currently support this kind of flow on Airbyte Cloud. @Sherif Nada do you think the Oauth endpoints we expose in our API can support Jens' usecase?
j

Jens Larsson

01/18/2022, 3:52 PM
We’re looking to host ourselves, and are not afraid to build functionality nor contribute it upstream if relevant 🙂
but wouldn’t want to reinvent something that’s already supported
s

Sherif Nada

01/19/2022, 2:35 AM
Hey Jens, the oauth endpoints are used with Airbyte cloud and aren’t really meant for OSS usage at the moment (it’s certainly not tested in the context of OSS 😄) but you are welcome to kick the tires on it! Worst case you can always implement your own oauth flow and interact with oauth-based connectors via the API just like any other connector
👍 1
j

Jens Larsson

01/19/2022, 8:17 AM
Thanks @Sherif Nada , I see some sources should be rather easy to patch up, like the
Shopify
one that has abstracted out the http oauth header generation to a separate function in an
auth.py
module (that we can shadow with our own method). For others like e.g. Chargebee it seems harder as the api-key based auth is baked into the Source-class’
streams
method itself. I guess what I’m getting at is, is there a best-practice or style guide we can adhere to, and perhaps a kind request to make the broken-out auth as in
Shopify
a part of the connector-template cookiecutter 🙂
h

Harshith (Airbyte)

01/24/2022, 6:29 AM
Hey @Jens Larsson can you create an issue around it so that we can discuss and track it
j

Jay Tavares

04/20/2022, 6:22 PM
@Jens Larsson Did you ever create an issue for this? We are in a similar boat. We have our own OAuth implementation that our clients use to connect their accounts (in our system) to third-party services. We maintain their OAuth access tokens in our backend and would like to pass them to Airbyte for use in user-specific connections.
2 Views