Skip to content

OAuth2 flow support (Authorization Code + PKCE + token refresh) #6

New issue
New issue
Open
Open
OAuth2 flow support (Authorization Code + PKCE + token refresh)#6
Labels
enhancementNew feature or request
@kobzevvv

Description

@kobzevvv
kobzevvv
opened on Mar 1, 2026

Why: Many APIs (Google Sheets, Meta Ads, Spotify, etc.) require OAuth2 tokens that expire. Currently Vault can only store static tokens — when they expire, the user must manually re-authenticate.

Scope:

  • Authorization Code flow with PKCE
  • Token refresh (store refresh_token, auto-get new access_token)
  • Support for Google, Meta, Slack, Shopify OAuth2 providers

Use cases:

  • Google Sheets API with user OAuth tokens
  • Meta Ads API with long-lived tokens that need periodic refresh
  • Spotify API for user-scoped requests

Priority: High — unlocks a large class of APIs

Metadata

Metadata

Assignees

No one assigned

    Labels

    enhancementNew feature or request

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions