Nylas maintains the @nylas/connect library, a JavaScript/TypeScript library that you can use to add a simple authentication mechanism to your project. It automatically manages OAuth flows, token storage, and grant creation across multiple providers, meaning you can get to making API requests more quickly.
Before you begin
Section titled “Before you begin”Before you can start using the Connect library, you need…
-
A working OAuth redirect URI.
-
Your Nylas application’s client ID.
-
The
@nylas/connectpackage installed in your environment.npm install @nylas/connectpnpm add @nylas/connect
Configuration settings
Section titled “Configuration settings”The Nylas Connect library automatically detects the following environment variables:
# Client ID (required)NYLAS_CLIENT_ID=your_client_id# or for ViteVITE_NYLAS_CLIENT_ID=your_client_id# or for Next.js/publicPUBLIC_NYLAS_CLIENT_ID=your_client_id
# Redirect URI (required)NYLAS_REDIRECT_URI=http://localhost:3000/auth/callback# or for ViteVITE_NYLAS_REDIRECT_URI=http://localhost:3000/auth/callback# or for Next.js/publicPUBLIC_NYLAS_REDIRECT_URI=http://localhost:3000/auth/callbackIf you want to configure your environment variables manually, you can set them in a new NylasConnect object.
const nylasConnect = new NylasConnect({ clientId: "<NYLAS_CLIENT_ID>", redirectUri: "http://localhost:3000/auth/callback", apiUrl: "https://api.us.nylas.com", // or https://api.eu.nylas.com defaultScopes: [], // If not provided, we default to your connector scopes environment: "development", // "development" | "staging" | "production" persistTokens: true, // Store tokens in localStorage debug: true, // Enable debug logging logLevel: "info" // "error" | "warn" | "info" | "debug" | "off"});Provider-specific configuration settings
Section titled “Provider-specific configuration settings”Every provider requests different information as part of its OAuth flow. You’ll need to configure the information you pass for each provider your project supports.
const result = await nylasConnect.connect({ method: "popup", provider: "google", scopes: [ "https://www.googleapis.com/auth/gmail.readonly", "https://www.googleapis.com/auth/calendar.readonly" ],});const result = await nylasConnect.connect({ method: "popup", provider: "microsoft",});const result = await nylasConnect.connect({ method: "popup", provider: "imap" // User will be prompted for IMAP settings});Set up basic authentication
Section titled “Set up basic authentication”The Connect library supports two ways to set up basic authentication: using a pop-up flow, or an inline flow.
Set up basic authentication using pop-up flow
Section titled “Set up basic authentication using pop-up flow”When you use the pop-up flow, your project opens the OAuth prompt in a pop-up window and the user authenticates without leaving your application. This method works well if you’re creating a single-page application (SPA).
import { NylasConnect } from "@nylas/connect";
// Initialize with environment variables (recommended)const nylasConnect = new NylasConnect();
try { // Start OAuth flow in popup window const result = await nylasConnect.connect({ method: "popup" });
// Extract grant information const { grantId, email, provider } = result; console.log(`Connected ${email} via ${provider}`);
// Store grantId for future API calls localStorage.setItem('nylasGrantId', grantId);} catch (error) { console.error('Authentication failed:', error);}Set up basic authentication using inline flow
Section titled “Set up basic authentication using inline flow”When you use the inline flow, your project redirects the user’s browser to the OAuth provider where they authenticate. After the authentication process is complete, the provider returns the user to your project. We recommend this method for mobile browsers or other scenarios where the user’s browser might not support pop-ups.
// For redirect-based flowconst url = await nylasConnect.connect({ method: "inline" });window.location.href = url;// User will be redirected to OAuth providerHandle OAuth callback
Section titled “Handle OAuth callback”Now that you have basic authentication set up, you need to make sure your project can handle the OAuth callback.
// On your callback page (e.g., /auth/callback)try { const result = await nylasConnect.callback(); const { grantId, email } = result; console.log(`Successfully authenticated: ${email}`);} catch (error) { console.error('Callback handling failed:', error);}Set up error handling
Section titled “Set up error handling”You can set up error handling for your authentication flow using either the try-catch method or state change events that Nylas Connect generates.
try { const result = await nylasConnect.connect({ method: "popup" }); console.log('Connection successful:', result);} catch (error) { if (error.name === 'PopupError') { console.error('Popup was blocked or closed'); } else if (error.name === 'ConfigError') { console.error('Configuration error:', error.message); } else if (error.name === 'OAuthError') { console.error('OAuth error:', error.message); } else { console.error('Unexpected error:', error); }}nylasConnect.onConnectStateChange((event, session, data) => { switch (event) { case 'CONNECT_SUCCESS': console.log('Successfully connected:', session); break; case 'CONNECT_ERROR': console.error('Connection failed:', data.error); break; case 'CONNECT_CANCELLED': console.log('User cancelled authentication'); break; case 'CONNECT_STARTED': console.log('Authentication started'); break; }});Manage authenticated grants
Section titled “Manage authenticated grants”Nylas Connect makes calls to the Nylas APIs to manage grants’ connection status in your project.
Check grant connection status
Section titled “Check grant connection status”Your project should check users’ grant connection status intermittently to ensure they’re still authenticated.
// Check if user is connectedconst isConnected = await nylasConnect.isConnected();
// Get grant informationconst grantInfo = await nylasConnect.getGrantInfo();if (grantInfo) { console.log(`Connected as: ${grantInfo.email}`); console.log(`Provider: ${grantInfo.provider}`); console.log(`Grant ID: ${grantInfo.grantId}`);}Log a user out
Section titled “Log a user out”When a user chooses to log out of your project, you need to call nylasConnect.logout(). If you don’t pass a grant ID in your call, Nylas Connect logs the current user out.
// Logout current userawait nylasConnect.logout();
// Logout specific grantawait nylasConnect.logout('specific-grant-id');Set up single sign-on support
Section titled “Set up single sign-on support”You can add support for single sign-on (SSO) to your project by including the following code.
// Check for existing session on app loadconst isConnected = await nylasConnect.isConnected();
if (isConnected) { const grantInfo = await nylasConnect.getGrantInfo(); // User is already authenticated, proceed to app initializeApp(grantInfo);} else { // Show login button showLoginButton();}Set up support for multiple accounts
Section titled “Set up support for multiple accounts”If you want to allow your users to authenticate multiple accounts to your project, you can configure Nylas Connect to get information about all of their authenticated grants.
// Connect additional accountsconst secondAccount = await nylasConnect.connect({ method: "popup", provider: "microsoft"});
// Manage multiple grantsconst allGrants = await Promise.all([ nylasConnect.getGrantInfo('grant-1'), nylasConnect.getGrantInfo('grant-2')]);