SSOCallback

Handles OAuth and SSO callbacks from external identity providers like Google, GitHub, and enterprise SAML providers. Create a route for the OAuth callback that matches your redirect URI configured in the Wacht dashboard:

import { SSOCallback } from "@wacht/tanstack-router";

export default function SSOCallbackPage() {
  return <SSOCallback />;
}

Behavior

Reads OAuth callback parameters from the URL (code, state, error)
Validates the OAuth state parameter
Calls the appropriate backend endpoint to complete the flow
Handles errors (access denied, invalid state, etc.) with an error message banner
Redirects to the appropriate page after completion

The state parameter supports:

sign_in - Standard sign-in flow
connect_social - Connecting a social account to an existing user

Query Parameters

code

string

OAuth authorization code.

state

string

OAuth state parameter (base64 encoded).

error

string

OAuth error code.

error_description

string

OAuth error description.

useSSOCallback - SSO callback hook
SignInForm - Sign-in form with social login

NavigateToSignUp

WaitlistForm

⌘I

Getting Started

Authentication Components

Authentication Hooks

Multi-Tenancy Components

Multi-Tenancy Hooks

Agent Hooks

User Components

User Hooks

Other Components

Other Hooks

SSOCallback

SSOCallback

Behavior

Query Parameters

Getting Started

Authentication Components

Authentication Hooks

Multi-Tenancy Components

Multi-Tenancy Hooks

Agent Hooks

User Components

User Hooks

Other Components

Other Hooks

​SSOCallback

​Behavior

​Query Parameters

​Related

SSOCallback

Behavior

Query Parameters

Related