> ## Documentation Index > Fetch the complete documentation index at: https://docs.prelude.so/llms.txt > Use this file to discover all available pages before exploring further. # List OAuth login configs > List all OAuth login configurations for the application. ## OpenAPI ````yaml get /v2/session/apps/{appID}/config/login/oauth openapi: 3.1.1 info: title: Prelude Session Management API version: 0.0.1 summary: The Prelude API for Session Management description: The Prelude API for Session Management. contact: email: support@prelude.so url: https://prelude.so servers: - url: https://api.prelude.dev description: Production server security: - Authorization: [] tags: - name: Mode description: Manage the mode (dev/prod) of your application. - name: Users description: Manage the users of your application. - name: Webhooks description: Manage the webhooks of your application. - name: Domains description: Manage the domains of your application. - name: Config - Scopes description: Manage the scope configuration of your application. - name: Config - Claims description: Manage the claims mapping configuration of your application. - name: Config - Step-up description: Manage the step-up authentication configuration of your application. - name: Config - Migration description: Manage the user migration configuration of your application. - name: Config - Login OTP description: Manage the OTP login configuration of your application. - name: Config - Login OAuth description: Manage the OAuth login configuration of your application. - name: Config - Login Password description: Manage the password login configuration of your application. paths: /v2/session/apps/{appID}/config/login/oauth: parameters: - $ref: '#/components/parameters/appIDParam' get: tags: - Config - Login OAuth summary: List OAuth login configs description: List all OAuth login configurations for the application. operationId: listLoginOauthConfigs responses: '200': description: OK content: application/json: schema: $ref: '#/components/schemas/GetLoginOauthConfigsResponse' '404': description: Not Found content: application/json: schema: $ref: '#/components/schemas/AppNotFoundError' components: parameters: appIDParam: in: path name: appID required: true description: The id of the app the request refers to. schema: $ref: '#/components/schemas/AppID' schemas: GetLoginOauthConfigsResponse: type: object properties: configs: type: array items: $ref: '#/components/schemas/LoginOauthConfigResponse' required: - configs AppNotFoundError: type: object properties: code: type: string enum: - app_not_found examples: - app_not_found status: type: string enum: - not_found examples: - not_found message: type: string examples: - The application was not found. required: - code - status - message AppID: type: string description: An application's unique identifier. examples: - 54e9ujn - fvua38g LoginOauthConfigResponse: type: object properties: provider_id: type: string examples: - google client_id: type: string examples: - 123456789.apps.googleusercontent.com enabled: type: boolean examples: - true scopes: type: array items: type: string examples: - openid - email - profile options: $ref: '#/components/schemas/OauthOptions' apple: $ref: '#/components/schemas/AppleOauthConfig' okta: $ref: '#/components/schemas/OktaOauthConfig' created_at: type: string format: date-time examples: - '2025-03-15T10:30:00Z' updated_at: type: string format: date-time examples: - '2025-03-15T12:00:00Z' required: - provider_id - client_id - enabled - scopes - options - created_at - updated_at OauthOptions: type: object properties: use_email_as_identifier: type: boolean examples: - true description: | When `true`, creates an email identifier on new OAuth users whose email is verified by the IdP (or via the `verify_email` OTP flow). allow_email_account_merge: type: boolean examples: - false description: | When `true`, links the OAuth identifier to an existing user that already owns the same email address (verified by the IdP or via `verify_email`). Without this flag, an email collision with an existing account is rejected with `email_in_use`. verify_email: type: boolean examples: - false description: | When `true`, kicks in only if the IdP returns an unverified email. The OAuth callback redirects with `status=otp_required` and the `challenge_token` query parameter; the SDK sends an OTP to the email and the user must validate ownership before the OAuth identifier is attached to (or creates) an account. Requires `use_email_as_identifier=true` and at least one email OTP login config — these preconditions are checked at write time. When `verify_email=true` but `use_email_as_identifier` is later disabled, the OTP step is skipped at runtime and the account is created with only the OAuth identifier. AppleOauthConfig: type: object properties: team_id: type: string examples: - ABCDEF1234 key_id: type: string examples: - KEY123456 private_key: type: string examples: - |- -----BEGIN PRIVATE KEY----- MIGT...base64...== -----END PRIVATE KEY----- OktaOauthConfig: type: object properties: domain: type: string examples: - dev-123456.okta.com securitySchemes: Authorization: type: http scheme: bearer ````