What's New
- Full OAuth 2.0 Authorization Code + PKCE Support - Annotate your request with
@auth oauth2and resterm will
open your default browser, let you sign in with your identity provider (Google, Microsoft, GitHub, Okta, etc.)
and automatically capture the token back.
Highlights
- Browser-based authentication - resterm automatically launches your browser, handles the OAuth callback, and captures the authorization code
- PKCE by default - Secure code challenge/verifier generation (S256)
- Automatically spins up a local callback server on an available port
- Public client support - Works with OAuth providers that don't require a client secret