How to Implement OAuth2 in Rust

Use the oauth2 crate to handle the authorization code flow by defining a client, initiating the flow, and exchanging the code for tokens.

use oauth2::{AuthUrl, Client, ClientId, ClientSecret, CsrfToken, PkceCodeChallenge, RedirectUrl, TokenUrl};

fn main() {
    let auth_url = AuthUrl::new("https://example.com/oauth2/auth".to_string()).unwrap();
    let token_url = TokenUrl::new("https://example.com/oauth2/token".to_string()).unwrap();
    let client = Client::new(
        ClientId::new("client_id".to_string()),
        Some(ClientSecret::new("client_secret".to_string())),
        auth_url,
        Some(token_url),
    ).add_redirect_uri(RedirectUrl::new("http://localhost:8080/callback".to_string()).unwrap());

    let (auth_url, state) = client
        .authorize_url(CsrfToken::new_random)
        .unwrap();

    // Exchange code for token after redirect
    // let code = ...; // Obtain code from redirect
    // let token = client.exchange_code(&code).unwrap();
}

OAuth2 is a standard way to let users log in to your app using their existing accounts from other services like Google or GitHub. It works by sending the user to the provider to get permission, then giving you a secure token to access their data without seeing their password. Think of it like showing a hotel key card to enter a room instead of giving the front desk your home address.