Add password login

You'll learn how to register SqlOS, seed an owned client, and sign in through the hosted login UI.

Prerequisites

Completed Getting Started
SQL Server connection string configured
A DbContext implementing ISqlOSAuthServerDbContext

Goal#

Users sign in at /sqlos/auth/login with email and password. Your app uses the OAuth authorization code flow with PKCE.

Steps#

Register SqlOS with password auth enabled (default):

CSHARP

builder.AddSqlOS<AppDbContext>(options =>
{
    options.AuthServer.SeedOwnedWebApp(
        "web",
        "My App",
        "https://localhost:5001/auth/callback");
    options.AuthServer.SeedAuthPage(page =>
    {
        page.PageTitle = "Sign in";
        page.EnablePasswordSignup = true;
    });
});

Map routes after Build():

CSHARP

app.MapSqlOS();

Start the app and open /sqlos/auth/authorize with your client id, redirect URI, and PKCE challenge (the Todo sample shows a full flow).
Verify: complete login and confirm your app receives tokens at the callback URL.

Expected outcome#

Hosted login and signup pages render with your branding
OAuth /authorize and /token endpoints respond on your origin
Users and sessions appear in /sqlos/admin/auth/

Next steps#

Email OTP for passwordless sign-in
Social sign-in
GitHub sign-in
Headless auth for a custom SPA UI

Ship password login with the hosted AuthPage

Goal#

Steps#

Expected outcome#

Next steps#

Ship password login with the hosted AuthPage

Goal#

Steps#

Expected outcome#

Next steps#