Quickback Docs

Device Authorization

OAuth 2.0 Device Authorization flow for CLI and headless environments.

The Quickback CLI uses the OAuth 2.0 Device Authorization Grant (RFC 8628) for authentication in headless environments.

Flow

  1. CLI requests a device code from the API
  2. User sees a code in the terminal (e.g., AUL8-H93S)
  3. User visits the approval URL and enters the code
  4. CLI polls for approval and exchanges for a session token

This flow works in SSH sessions, containers, and WSL where browser redirects aren't possible.

See CLI Reference for usage details.

Authentication Security

Configure secure cookies, rate limiting, and cross-domain authentication. Learn best practices for production-ready auth configuration.

API Keys

API key authentication for programmatic access to your Quickback API.

On this page

Flow