OAuth for Tools
Many of BasePeak.AI's built-in tools integrate with third-party services (GitHub, Google, Slack, and others) and require OAuth 2.0 to authenticate on behalf of users. Workspace administrators configure the OAuth application credentials so that users can connect these integrations without managing their own API credentials.
Where to configure
OAuth app credentials are managed through the Tools page (/admin/tools). For any tool that requires OAuth, a configuration option is available directly on the tool's card. Tools that have not yet been configured display an indicator so you can identify which ones need attention.
Setting up an OAuth app
Each tool provides step-by-step instructions for registering an OAuth application with the relevant service:
- Open the admin Tools page
- Locate the tool you want to configure
- Open its OAuth configuration
- Follow the embedded instructions to create an OAuth app in the third-party service's developer console
- Enter the Client ID and Client Secret (and any other required fields) from the registered app
- Save
Once saved, users can authenticate with that service through the tool without needing their own API credentials.
Custom OAuth apps
For tools that use a generic OAuth flow (rather than a named provider preset), you can register a custom OAuth app with your own client credentials and redirect URI. The redirect URI to register in the third-party service is displayed in the configuration dialog.
Notes
- OAuth credentials are stored encrypted and are not exposed to users
- Each tool's configuration dialog describes the exact scopes required for that integration
- Admins can remove or reconfigure credentials at any time without affecting other tools