RootAuth provides a JavaScript SDK to help you quickly integrate authentication features such as login, registration, and authorization into your web application. The SDK supports two integration modes, allowing you to choose the one that best fits your project needs.
1. Integration Mode Overview
| Mode | Description | Use Case |
|---|---|---|
| Hosted | Uses RootAuth’s complete login/registration/password reset pages (includes UI and API) | For quick deployment with basic styling requirements for authentication pages |
| API | Calls only RootAuth’s API interfaces, fully custom UI | For maintaining product design consistency or deep customization of the authentication flow |
Common to both modes:
-
An app must be created in the workspace to obtain an
app_id -
A
RootAuthClientinstance must be created
2. Preparation
Create an app and obtain the app_id
-
Log in to the RootAuth workspace
-
Create or select your application
-
Copy the APP ID from the application configuration page (format:
app_******)
3. Install the SDK
Run the following command in your project root to install the stable version:
npm install --save rootauth-jsNote: Do not download beta versions (test versions); use only stable releases.
4. Common Steps
Create a RootAuthClient instance
Create the client instance in your project’s entry file (e.g., main.js) and inject it into the global object as needed.
// main.js
import type { Router, RouteRecordRaw } from 'vue-router'
import { RootAuthClient, type RootAuthClientConfig } from 'rootauth-js'
const options: RootAuthClientConfig = {
app_id: 'app_******', // Required: app_id generated from the workspace
}
const client = new RootAuthClient(options)Complete configuration options (RootAuthClientConfig)
interface RootAuthClientConfig {
app_id: string // Required: obtained from the workspace application configuration
mode?: 'api' | 'hosted' // Usage mode, defaults to hosted (uses RootAuth pages)
/** Base path for routes in hosted mode, e.g., '/auth' results in routes like /auth/login, /auth/register, etc.; if omitted, routes start from site root / */
base_path?: string
api_base_url?: string // Backend API endpoint path, defaults to https://rootauth-api.rootauth.com; for development, modify to https://rootauth-api.rootauth.dev
redirect_uri?: string // Redirect path after successful login, defaults to location.origin
state?: string // Custom parameter, returned as-is by the API
locale?: string // Current language, defaults to zh-CN; currently supports zh-CN, en-US
scope?: string[] // Scope mapping, defaults to ['openid']
grant_type?: string // Authorization mode, defaults to authorization_code
enable_google_one_tap?: boolean // Enable Google One Tap login, defaults to false
/** Hosted mode login success callback; returns false to prevent default redirect */
onLoginSuccess?: LoginSuccessCallback;
/** Hosted mode registration success callback; returns false to prevent default redirect */
onRegisterSuccess?: RegisterSuccessCallback;
}
At this point, the common steps are complete. Continue configuration based on your chosen integration mode.
5. Hosted Mode
This mode is the default. It enables RootAuth’s complete login/registration/password reset pages.
5.1 Route Notes
Hosted mode reserves the following three routes. Avoid redefining them in your application routes:
-
/login -
/register -
/reset-password
To customize the base path, use the base_path configuration option to add a prefix (e.g., setting it to /auth changes the routes to /auth/login, etc.).
5.2 Mounting Routes
Call the instance’s install method and pass your Vue Router instance. The SDK will automatically merge the authentication routes into your routing system.
// main.js
import type { Router, RouteRecordRaw } from 'vue-router'
import { RootAuthClient, type RootAuthClientConfig } from 'rootauth-js'
const options: RootAuthClientConfig = {
app_id: 'app_******', // Required: app_id generated from the workspace
}
const client = new RootAuthClient(options)
client.install(router as Router)
5.3 Dynamic Language Switching
If you need to switch languages in your system, inject the client instance into the global object and call:
client?.setLocale('en-US')
5.4 Hosted Mode Complete Example
// main.js
import type { Router, RouteRecordRaw } from 'vue-router'
import { RootAuthClient, type RootAuthClientConfig } from 'rootauth-js'
const options: RootAuthClientConfig = {
app_id: 'app_******', // Required: app_id generated from the workspace
}
const client = new RootAuthClient(options)
client.install(router as Router)
6. API Mode
This mode provides API calls only and includes no UI. You must implement your own login/registration pages and call the SDK methods to complete authentication.
6.1 Create a Client Instance
(You must specify mode: 'api')
import { RootAuthClient, type RootAuthClientConfig } from 'rootauth-js'
const options: RootAuthClientConfig = {
app_id: 'app_******', // Required: app_id generated from the workspace
mode: 'api' // Required for API mode
}
const client = new RootAuthClient(options)
6.2 Inject the Global Instance
(Using Nuxt as an example)
For other frameworks (such as Vue, React), follow a similar approach: mount the client globally or use Context/Provider.
6.2.1 Create the Plugin File
plugins/rootauth.client.ts
// plugins/rootauth.client.ts
import { RootAuthClient, type RootAuthClientConfig } from 'rootauth-js'
export default defineNuxtPlugin(() => {
const options: RootAuthClientConfig = {
app_id: 'app_******', // Required: app_id generated from the workspace
mode: 'api' // Required for API mode
}
const client = new RootAuthClient(options)
return {
provide: {
rootauth: client,
},
}
})
6.2.2 Register the Plugin
nuxt.config.ts
// nuxt.config.ts
export default defineNuxtConfig({
plugins: [
'@/plugins/rootauth.client.ts',
]
})
6.2.3 Access the Instance in a Component
const { $rootauth } = useNuxtApp()
$rootauth?.xxx()
6.2.4 Wrap in a Composable (Optional, Recommended)
Create composables/useRootAuth.ts:
// composables/useRootAuth.ts
import type { RootAuthClient } from 'rootauth-js'
/** RootAuth client (injected by `plugins/rootauth.client` when `ROOTAUTH_APP_ID` is configured) */
export function useRootAuth(): RootAuthClient | undefined {
return useNuxtApp().$rootauth as RootAuthClient | undefined
}The RootAuth object can now be used more cleanly:
const rootauth = useRootAuth()
rootauth?.xxx()
6.3 API Method Notes
The login, register, sendCode, and resetPassword methods all return a Promise. A second parameter can be passed with custom callbacks (onSuccess/onFailure) to override the SDK’s default behavior.
If you only need to add extra logic (such as closing a loading indicator), use the Promise directly (.then(), .catch()) without passing the second parameter. The SDK will retain its default behavior.
6.3.1 Login
const rootauth = useRootAuth()
interface LoginParams {
type: string // Required: login method: EMAIL_PASS|EMAIL_CODE, currently supports EMAIL_PASS (email + password) and EMAIL_CODE (email verification code)
email: string // Required: user email
password?: string // Required when type is EMAIL_PASS; note: only plaintext password is needed, RootAuth handles encryption
code?: string // Required when type is EMAIL_CODE
}
interface RootAuthFlowCallbacks<T = unknown> {
onSuccess?: (data: T) => void
onFailure?: (error: unknown) => void
}
// Available type
rootauth?.login(
params: LoginParams,
callbacks?: RootAuthFlowCallbacks<
AxiosResponse<ApiResponse<{ redirect_url: string }>>
>,
)
.then((res) => {
// Add your own logic based on RootAuth's default behavior
})
.catch((err) => {
console.log('err', err)
})
.finally(() => {
// Close loading indicator, etc.
})Example with custom callback:
const handleSubmit=()=>{
// User handles pre-validation
loading.value = true
rootauth?.login({
type:'EMAIL_PASS',
email:'123456@qq.com',
password:'123456'
},
{
onSuccess:()=>{
// Custom login success callback, including notifications, etc.
},
onFailure:()=>{
// Custom login failure callback, including notifications, etc.
}
})
.finally(() => {
loading.value = false
})
}
6.3.2 Register
interface RegisterParams {
type?: string // Registration type: EMAIL_CODE, defaults to EMAIL_CODE (email verification code registration)
email: string // Required: user email
code: string // Required: email verification code
password: string // Required: password; note: only plaintext password is needed, RootAuth handles encryption
}
const params: RegisterParams = {
email: '123456@qq.com',
password: '123456',
code: '123456',
}
rootauth?.register(params)
.then((res) => {
// Add your own logic based on RootAuth's default behavior
})
.catch((err) => {
console.error(err)
})
.finally(() => {
})
6.3.3 Send Verification Code
interface SendCodeParams {
type?: string // Verification code type: EMAIL, defaults to EMAIL (email verification code)
email: string // Required: user email
email_template_type: string // Required: template type: register_code|login_code|reset_pass_code; register_code: registration code, login_code: login code, reset_pass_code: password reset code
}
const params: SendCodeParams = {
email: '123456@qq.com',
email_template_type: 'register_code'
}
rootauth?.sendCode(params)
.then((res) => {
// Add your own logic based on RootAuth's default behavior
})
.catch((err) => {
console.error(err)
})
.finally(() => {
})
6.3.4 Reset Password
interface ResetPasswordUParams {
type?: string // Verification code type: EMAIL_CODE, defaults to EMAIL_CODE (email verification code)
email: string
password: string // New password; note: only plaintext password is needed, RootAuth handles encryption
password_confirmation: string // Confirm password; note: only plaintext password is needed, RootAuth handles encryption
code: string
}
const params: ResetPasswordUParams = {
email: '123456@qq.com',
password: '123456',
password_confirmation: '123456',
code: '111111'
}
rootauth?.resetPassword(params)
.then((res) => {
// Add your own logic based on RootAuth's default behavior
})
.catch((err) => {
console.error(err)
})
.finally(() => {
})
6.3.5 Third-Party Login (Google OAuth)
interface ThirdPartyLoginParams {
auth_by: string // Third-party type: google_oauth; google_oauth: Google login
}
const params: ThirdPartyLoginParams = {
auth_by: 'google_oauth'
}
rootauth?.thirdPartyLogin(params)
.then((res) => {
// Add your own logic based on RootAuth's default behavior
})
.catch((err) => {
console.error(err)
})
.finally(() => {
})
6.3.6 Google One Tap Login
You must first enable enable_google_one_tap: true in the configuration.
rootauth?.googleOneTapLogin()
;}.cls-2{fill:%230868f7;}.cls-3{fill:url(%23未命名的渐变_44);}.cls-4{fill:%23333;}%3c/style%3e%3clinearGradient%20id='未命名的渐变_8'%20x1='33.73'%20y1='100.61'%20x2='-0.03'%20y2='-1.06'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20offset='0'%20stop-color='%237ae9fb'/%3e%3cstop%20offset='0.67'%20stop-color='%232b90f8'/%3e%3cstop%20offset='1'%20stop-color='%230868f7'/%3e%3c/linearGradient%3e%3clinearGradient%20id='未命名的渐变_44'%20x1='27.86'%20y1='18.67'%20x2='68.36'%20y2='22.22'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20offset='0'%20stop-color='%235ac7f2'/%3e%3cstop%20offset='1'%20stop-color='%230868f7'/%3e%3c/linearGradient%3e%3c/defs%3e%3cpath%20class='cls-1'%20d='M29,28.74V81.91l-9.51-3.68v0L8.52,74A7.17,7.17,0,0,1,4,67.32V24.54A3.76,3.76,0,0,1,9.08,21Z'/%3e%3cpath%20class='cls-2'%20d='M68.09,78.07a13.15,13.15,0,0,1-17.9,12.06L29,81.91h0V28.74L50.19,37A13.17,13.17,0,0,0,68.08,25.3h0Z'/%3e%3cpath%20class='cls-3'%20d='M68.08,25.3a13.19,13.19,0,0,1-6.73,10.87A13.09,13.09,0,0,1,50.19,37L29,28.74V6A3.76,3.76,0,0,1,34.1,2.52l25.59,9.91A13.22,13.22,0,0,1,68.08,25.3Z'/%3e%3cpath%20class='cls-4'%20d='M129.06,81.76a4.33,4.33,0,0,1-3.19-1.31,4.4,4.4,0,0,1-1.31-3.24V56.86H97.65V77.21a4.36,4.36,0,0,1-1.35,3.2A4.68,4.68,0,0,1,93,81.76a4.32,4.32,0,0,1-3.19-1.31,4.37,4.37,0,0,1-1.32-3.24V27.27A4.58,4.58,0,0,1,89.83,24a4.59,4.59,0,0,1,7.82,3.27V48.15h26.91V27.27A4.58,4.58,0,0,1,125.91,24a4.59,4.59,0,0,1,7.82,3.27V77.21a4.37,4.37,0,0,1-1.36,3.2A4.65,4.65,0,0,1,129.06,81.76Z'/%3e%3cpath%20class='cls-4'%20d='M163.77,81.66c-6.57,0-11.76-1.92-15.44-5.7s-5.54-9.07-5.54-15.74a26.76,26.76,0,0,1,2.09-10.43,17.72,17.72,0,0,1,6.67-8.06,19.15,19.15,0,0,1,10.68-2.95,19,19,0,0,1,10.46,2.8,18.7,18.7,0,0,1,6.55,7.36,22.53,22.53,0,0,1,2.36,10.28A4.51,4.51,0,0,1,177,63.77H152.23a10.8,10.8,0,0,0,3.49,6.65c2,1.68,4.88,2.52,8.66,2.52a22.25,22.25,0,0,0,7.54-1.21c.74-.3,1.55-.67,2.37-1.07a3.75,3.75,0,0,1,1.84-.4,4.09,4.09,0,0,1,3,1.15,4,4,0,0,1,1.12,3,4.38,4.38,0,0,1-2.58,3.82,32.34,32.34,0,0,1-6.36,2.61A28.67,28.67,0,0,1,163.77,81.66ZM172.4,55.9a9.72,9.72,0,0,0-1.63-4.56A9.9,9.9,0,0,0,167,48a10.38,10.38,0,0,0-4.64-1.14,12,12,0,0,0-4.77,1.06,9.54,9.54,0,0,0-4.89,5.66,11.78,11.78,0,0,0-.51,2.3Z'/%3e%3cpath%20class='cls-4'%20d='M193,81.64a4.49,4.49,0,0,1-4.51-4.55V27.28A4.58,4.58,0,0,1,189.84,24a4.48,4.48,0,0,1,3.28-1.36A4.36,4.36,0,0,1,196.35,24a4.46,4.46,0,0,1,1.31,3.31V77.09a4.34,4.34,0,0,1-1.35,3.2A4.67,4.67,0,0,1,193,81.64Z'/%3e%3cpath%20class='cls-4'%20d='M263.79,81.71a5.7,5.7,0,0,1-4.2-1.74,5.76,5.76,0,0,1-1.73-4.19V27.37a4.58,4.58,0,0,1,1.35-3.27A4.59,4.59,0,0,1,267,27.37V72.53h24a4.58,4.58,0,0,1,3.27,7.82A4.66,4.66,0,0,1,291,81.71Z'/%3e%3cpath%20class='cls-4'%20d='M424.48,81.74a4.71,4.71,0,0,1-2.71-.88,5.43,5.43,0,0,1-1-1l-.07-.09-12.41-17-5.41,5v9.44a4.31,4.31,0,0,1-1.36,3.19,4.66,4.66,0,0,1-3.3,1.36A4.29,4.29,0,0,1,395,80.42a4.36,4.36,0,0,1-1.32-3.23V27.37A4.58,4.58,0,0,1,395,24.1a4.52,4.52,0,0,1,6.58.12,4.54,4.54,0,0,1,1.24,3.15V56.31l17.72-16.38.05,0a4.8,4.8,0,0,1,2.94-1.11,4.4,4.4,0,0,1,3.27,1.2,4.57,4.57,0,0,1,1.2,3.27,4.44,4.44,0,0,1-.77,2.33,7.45,7.45,0,0,1-1.43,1.65l-11,9.64,13.34,17.68a5,5,0,0,1,1,2.71,4.12,4.12,0,0,1-1.36,3.24A4.64,4.64,0,0,1,424.48,81.74Z'/%3e%3cpath%20class='cls-4'%20d='M317.93,81.76a21.5,21.5,0,1,1,21.17-21.5A21.37,21.37,0,0,1,317.93,81.76Zm0-34.1a12.61,12.61,0,1,0,12.42,12.6A12.52,12.52,0,0,0,317.93,47.66Z'/%3e%3cpath%20class='cls-4'%20d='M212.18,101.22a4.12,4.12,0,0,1-3.05-1.26,4.17,4.17,0,0,1-1.26-3.1V43.34a4.37,4.37,0,0,1,1.3-3.14,4.26,4.26,0,0,1,3.13-1.3,4.19,4.19,0,0,1,3.1,1.26,4.32,4.32,0,0,1,1.26,3.16,20.77,20.77,0,0,1,13-4.54,21.51,21.51,0,0,1,0,43,20.51,20.51,0,0,1-13-4.57V96.86a4.15,4.15,0,0,1-1.3,3.06A4.5,4.5,0,0,1,212.18,101.22Zm17.43-53.63c-6.23,0-12.93,4.11-12.93,12.72a12.73,12.73,0,0,0,25.46,0A12.71,12.71,0,0,0,229.61,47.59Z'/%3e%3cpath%20class='cls-4'%20d='M365.76,81.76a21.5,21.5,0,1,1,21.18-21.5A21.37,21.37,0,0,1,365.76,81.76Zm0-34.1a12.61,12.61,0,1,0,12.42,12.6A12.52,12.52,0,0,0,365.76,47.66Z'/%3e%3c/svg%3e)