Documentation
API Reference
Endpoints implemented by Radiant Auth for OAuth 2.1 / OpenID Connect clients and first-party services.
Note
Protocol endpoints live under the issuer base
https://auth.rdnt.live/api/auth (Better Auth basePath). The site origin is https://auth.rdnt.live. Internal routes require INTERNAL_API_SECRET and are for first-party apps only.OAuth / OIDC
GET
/api/auth/oauth2/authorizeAuthorize
Start the Authorization Code + PKCE flow.
View docs
POST
/api/auth/oauth2/tokenToken
Exchange an authorization code or refresh token.
View docs
GET
/api/auth/oauth2/userinfoUserInfo
Return claims for the access token subject.
View docs
POST
/api/auth/oauth2/revokeRevoke
Revoke an access or refresh token.
View docs
POST
/api/auth/oauth2/introspectIntrospect
Check whether a token is active (RFC 7662).
View docs
GET
/api/auth/oauth2/end-sessionEnd Session
RP-initiated OpenID Connect logout.
View docs
GET
/.well-known/openid-configurationDiscovery
OIDC discovery document (canonical under /api/auth).
View docs
GET
/api/auth/jwksJWKS
JSON Web Key Set for verifying JWTs.
View docs
GET
/api/healthHealth
Liveness check for the auth Worker.
View docs