Electron app

// Example for macOS out/  
├── out/make/zip/darwin/x64/iam-electron-example-darwin-x64-1.0.0.zip  
├── ...  
└── out/iam-electron-example-darwin-x64/iam-electron-example.app/Contents/MacOS/iam-electron-example

### Preview

![Electron Login](/img/how-to-connect/desktop-sdks/electron-app/login.png)

Running the app opens a window. Click **Login with Hanzo IAM** to open the Hanzo IAM login page in your browser.

![Browser View](/img/how-to-connect/desktop-sdks/electron-app/browser.png)

After sign-in, the app opens and shows your username.

![Electron Logout](/img/how-to-connect/desktop-sdks/electron-app/logout.png)
![Electron Preview Gif](/img/how-to-connect/desktop-sdks/electron-app/preview.gif)

## Integration steps

### 1. Set the custom protocol

Register the `iam` custom protocol:

```javascript
const protocol = "iam";

if (process.defaultApp) {
  if (process.argv.length >= 2) {
    app.setAsDefaultProtocolClient(protocol, process.execPath, [
      path.resolve(process.argv[1]),
    ]);
  }
} else {
  app.setAsDefaultProtocolClient(protocol);
}

The browser can then open your app and pass the auth code via the protocol.

### 2. Open the login URL in the browser

```javascript
const serverUrl = "https://iam.hanzo.ai";
const appName = "app-casnode";
const redirectPath = "/callback";
const clientId = "014ae4bd048734ca2dea";
const clientSecret = "f26a4115725867b7bb7b668c81e1f8f7fae1544d";

const redirectUrl = "iam://localhost:3000" + redirectPath;

const signinUrl = `${serverUrl}/oauth/authorize?client_id=${clientId}&response_type=code&redirect_uri=${encodeURIComponent(redirectUrl)}&scope=profile&state=${appName}&noRedirect=true`;

shell.openExternal(signinUrl); //Open the login url in the browser

Adjust the first five variables for your Hanzo IAM instance.

### 3. Listen for the app being opened

After sign-in in the browser, the browser opens your app via the custom protocol. Listen for that event:

```javascript
const gotTheLock = app.requestSingleInstanceLock();
const ProtocolRegExp = new RegExp(`^${protocol}://`);

if (!gotTheLock) {
  app.quit();
} else {
  app.on("second-instance", (event, commandLine, workingDirectory) => {
    if (mainWindow) {
      if (mainWindow.isMinimized()) mainWindow.restore();
      mainWindow.focus();
      commandLine.forEach((str) => {
        if (ProtocolRegExp.test(str)) {
          const params = url.parse(str, true).query;
          if (params && params.code) {
            store.set("iam_code", params.code);
            mainWindow.webContents.send("receiveCode", params.code);
          }
        }
      });
    }
  });
  app.whenReady().then(createWindow);

  app.on("open-url", (event, openUrl) => {
    const isProtocol = ProtocolRegExp.test(openUrl);
    if (isProtocol) {
      const params = url.parse(openUrl, true).query;
      if (params && params.code) {
        store.set("iam_code", params.code);
        mainWindow.webContents.send("receiveCode", params.code);
      }
    }
  });
}

The auth code is in `iam_code` or `params.code`.

### 4. Exchange the code for user info

```javascript
async function getUserInfo(clientId, clientSecret, code) {
  const { data } = await axios({
    method: "post",
    url: authCodeUrl,
    headers: {
      "content-type": "application/json",
    },
    data: JSON.stringify({
      grant_type: "authorization_code",
      client_id: clientId,
      client_secret: clientSecret,
      code: code,
    }),
  });
  const resp = await axios({
    method: "get",
    url: `${getUserInfoUrl}?accessToken=${data.access_token}`,
  });
  return resp.data;
}

ipcMain.handle("getUserInfo", async (event, clientId, clientSecret) => {
  const code = store.get("iam_code");
  const userInfo = await getUserInfo(clientId, clientSecret, code);
  store.set("userInfo", userInfo);
  return userInfo;
});

See [OAuth](/docs/how-to-connect/oauth) for the full flow.