tijs.org / atproto-oauth
Framework-agnostic OAuth integration for AT Protocol (Bluesky) applications.
1
fork

Configure Feed

Select the types of activity you want to include in your feed.

docs: add AT Protocol resources and links to guides

tijs.org fa56d8bd d56af20e

+66 -1
+7
CHANGELOG.md
··· 2 2 3 3 All notable changes to this project will be documented in this file. 4 4 5 + ## [2.2.1] - 2025-11-29 6 + 7 + ### Added 8 + 9 + - **Documentation resources**: Added links to AT Protocol OAuth documentation 10 + and official example implementations in both guides 11 + 5 12 ## [2.2.0] - 2025-11-29 6 13 7 14 ### Added
+1 -1
deno.json
··· 1 1 { 2 2 "$schema": "https://jsr.io/schema/config-file.v1.json", 3 3 "name": "@tijs/atproto-oauth", 4 - "version": "2.2.0", 4 + "version": "2.2.1", 5 5 "license": "MIT", 6 6 "exports": "./mod.ts", 7 7 "publish": {
+40
docs/mobile-authentication.md
··· 5 5 6 6 ## Overview 7 7 8 + This library implements the 9 + [Backend-for-Frontend (BFF) pattern](https://atproto.com/specs/oauth#confidential-client-backend-for-frontend) 10 + recommended by AT Protocol for mobile apps requiring long-lived sessions. Your 11 + server acts as the OAuth client, keeping tokens secure while the mobile app 12 + receives a session cookie. 13 + 8 14 Mobile authentication uses a secure WebView flow: 9 15 10 16 1. App opens a secure browser (ASWebAuthenticationSession on iOS, Custom Tabs on ··· 364 370 - The OAuth state expired (default: 10 minutes) 365 371 - User took too long to complete authorization 366 372 - Start a new login flow 373 + 374 + ## Resources 375 + 376 + ### AT Protocol Documentation 377 + 378 + - [OAuth Specification](https://atproto.com/specs/oauth) - Full OAuth spec 379 + including mobile client requirements 380 + - [OAuth Introduction](https://atproto.com/guides/oauth) - Overview of OAuth 381 + patterns and app types 382 + - [BFF Pattern](https://atproto.com/specs/oauth#confidential-client-backend-for-frontend) - 383 + Backend-for-Frontend architecture details 384 + 385 + ### Example Implementations 386 + 387 + - [React Native OAuth Example](https://github.com/bluesky-social/cookbook/tree/main/react-native-oauth) - 388 + Official Bluesky mobile example using `@atproto/oauth-client-expo` 389 + - [Go OAuth Web App](https://github.com/bluesky-social/cookbook/tree/main/go-oauth-web-app) - 390 + BFF pattern implementation in Go 391 + - [Python OAuth Web App](https://github.com/bluesky-social/cookbook/tree/main/python-oauth-web-app) - 392 + BFF pattern implementation in Python 393 + 394 + ### Alternative Approaches 395 + 396 + This library uses the BFF pattern where OAuth tokens stay on your server. If you 397 + prefer tokens on the device, consider: 398 + 399 + - [@atproto/oauth-client-expo](https://www.npmjs.com/package/@atproto/oauth-client-expo) - 400 + Official Bluesky SDK for React Native (tokens on device) 401 + 402 + The BFF pattern is recommended when you need: 403 + 404 + - Long-lived sessions (up to 14 days for public clients) 405 + - Server-side API calls on behalf of users 406 + - Simplified mobile client code
+18
docs/web-authentication.md
··· 240 240 241 241 See the [Hono example](../README.md#hono-integration) in the main README for a 242 242 complete working setup. 243 + 244 + ## Resources 245 + 246 + ### AT Protocol Documentation 247 + 248 + - [OAuth Specification](https://atproto.com/specs/oauth) - Full OAuth spec for 249 + AT Protocol 250 + - [OAuth Introduction](https://atproto.com/guides/oauth) - Overview of OAuth 251 + patterns and app types 252 + - [Building Applications Guide](https://atproto.com/guides/applications) - Quick 253 + start guide for AT Protocol apps 254 + 255 + ### Example Implementations 256 + 257 + - [Go OAuth Web App](https://github.com/bluesky-social/cookbook/tree/main/go-oauth-web-app) - 258 + Official Bluesky web app example in Go 259 + - [Python OAuth Web App](https://github.com/bluesky-social/cookbook/tree/main/python-oauth-web-app) - 260 + Official Bluesky web app example in Python