Hi there,
Is there a way to integrate with existing Google OAuth provider to accomplish the following?
Allow users to access resources in google such as calendar, files etc(using google api) which requires we store the user’s access token, refresh token etc.
Don’t allow user’s to log in using google OAuth. Which probably means we don’t create a record in UserAuthDetails, but store the access tokens + userid in some other table?
The OAuthProviders are coupled to signing in, which if you sign in when you’re already authenticated it will “link” the OAuth provider to the authenticated user, so I suppose you could get close to the behavior you want by using a Global Request Filter to check req.Dto is Authenticate auth && auth.provider == "google" and only allow them to sign in if they’re already authenticated.