The response will include an access token, as well as information about the client and account that were authenticated.
Fb exchange client token code#
Once authorized, the user agent will redirect back to your web application with an authorization code included as a query parameter.Īfter the redirect, the web server will make a request to the Epic token endpoint using the client credentials and authorization code. The user will be asked to log in using their Epic Games account, and may be asked to authorize your application. Web Server Applicationsįor server-side applications, the flow will begin by taking the user through the Epic authorization flow on a web browser so that it can obtain an authorization code. This typically occurs within 2 hours after the access token is issued.ĭiagram illustrating Epic Games Launcher authentication flow. The game client will need to use the refresh token if the access token expires. When applicable, a refresh token will also be included in the token response. The access token can also be passed to trusted game servers for verification, or for use in service-to-service requests. The game client will include the access token on all requests to Epic services. The response will include an access token, information about the client and account that were authenticated, and an optional refresh token. When the game client is launched, it will make a request to the Epic token endpoint that includes the client credentials and exchange code. This exchange code is generated by the Epic Launcher and passed to the game client as a command-line argument. Scenarios Game Client on the Epic Games StoreĪ game client launched from the Epic Games Store will authenticate with Epic's authorization server using a one-time use exchange code. See our guide on Getting Started with Epic Account Services for more details. These will be in the form of a Client ID and Client Secret, and will be used when requesting an access token from the Epic authorization server. Epic has also introduced custom grant types for some specific use cases.īefore starting, you will need to obtain OAuth 2.0 client credentials from Epic. Epic Games Services uses the OAuth 2.0 protocol for authentication and authorization, supporting common-use cases for web servers and client-side applications.