Create authorization request

curl --request POST \
  --url https://submit.hackclub.com/api/authorize \
  --header 'Authorization: Bearer <token>'

{
  "auth_id": "8eaa8b02-1018-4075-aec0-7872e5db18aa",
  "popup_url": "https://submit.hackclub.com/popup/authorize/8eaa8b02-1018-4075-aec0-7872e5db18aa",
  "status": "pending",
  "expires_at": "2025-08-27T00:26:18.573Z"
}

POST

api

authorize

Create authorization request

curl --request POST \
  --url https://submit.hackclub.com/api/authorize \
  --header 'Authorization: Bearer <token>'

{
  "auth_id": "8eaa8b02-1018-4075-aec0-7872e5db18aa",
  "popup_url": "https://submit.hackclub.com/popup/authorize/8eaa8b02-1018-4075-aec0-7872e5db18aa",
  "status": "pending",
  "expires_at": "2025-08-27T00:26:18.573Z"
}

Creates a new authorization request for headless OAuth flows
Returns a popup URL that users can visit to complete identity verification
Requires Bearer token authentication with your program API key
Authorization requests expire after 15 minutes

Authorizations

Authorization

string

header

required

Program API key obtained from the admin dashboard

Response

Authorization request created successfully

auth_id

string<uuid>

required

Unique identifier for this authorization request

URL for the user to visit in a popup window to complete authorization

status

enum<string>

required

Current status of the authorization request

Available options:

pending

expires_at

string<date-time>

required

When this authorization request expires (15 minutes from creation)

Verify session Check authorization status