OAuth Identity Provider Overview | Stytch Consumer authentication

B2B Saas Authentication

Guides

Authentication

OAuth

Resources

Identity providers

OAuth identity providers

OAuth is an authentication protocol that enables Organizations to use third-party applications as identity providers for authenticating their Members.

The table below lists the OAuth providers supported by our B2B SaaS Authentication API.

Don't see an OAuth provider you need for your B2B SaaS application? We’re actively accepting requests for new OAuth providers! Please email us or post in our community if you are looking for an OAuth provider that is not currently listed.

Provider

access_token

refresh_token

Session length

The access_token will be used to authenticate calls for a given user with the provider.

The refresh_token, if returned, will allow you to refresh a given session and keep it active. If the session lapses, you'll need to prompt the user to log in again via Stytch with the provider.

Google

Returned

1 hour

Log in with Google enables your users to authenticate though the same Google Workspace. Regardless of what domain, do this by enabling OAuth app access.

DEFAULT SCOPES

open_id
email
profile

RESOURCES

Stytch API reference Gmail API documentation

Microsoft

Returned

Returned*

60-90 minutes

DEFAULT SCOPES

open_id
email
profile

RESOURCES

Stytch API reference Microsoft scopes Microsoft API documentation offline_access Custom scope

HubSpot

Returned

30 minutes

DEFAULT SCOPES

oauth

RESOURCES

HubSpot OAuth documentation

Slack

Returned

—

Until revoked

DEFAULT SCOPES

users:read
users:read.email

RESOURCES

Slack scopes Slack API documentation

GitHub

Returned

—

Until revoked

DEFAULT SCOPES

user
read:org

RESOURCES

GitHub scopes GitHub API documentation