Hanzo
PlatformHanzo IAMProvidersOAuth

Telegram

Add Telegram OAuth provider to your application

Telegram Login Widget provides a secure way to authenticate users through their Telegram accounts. Unlike traditional OAuth providers, Telegram uses a widget-based approach with cryptographic verification.

Create a Telegram Bot

Create a bot via @BotFather:

  1. Open Telegram and search for @BotFather
  2. Send /newbot and follow the prompts to create your bot Create Telegram Bot
  3. After creation, BotFather will provide you with a bot token - save this securely Telegram client
  4. Send /setdomain to BotFather and provide your domain (e.g., example.com) Telegram Setdomain

:::tip

The bot token is sensitive information. Never share it publicly or commit it to version control.

:::

Add Telegram Provider in Hanzo IAM

  1. Navigate to Providers in Hanzo IAM's admin panel
  2. Click Add to create a new provider
  3. Set Category to OAuth and Type to Telegram
  4. Configure the provider:
    • Client ID: Your bot's username (e.g. iam_telegram_bot no need @)
    • Client Secret: The bot token provided by BotFather Telegram provider

:::note Domain Verification

Authentication will only work from the domain you registered with BotFather using the /setdomain command. Make sure your Hanzo IAM instance is accessible from this domain.

:::

Logging In with Telegram

With the setup completed, users can now log in with Telegram.

Authentication flow

Users sign in via Telegram’s login widget; Hanzo IAM validates the HMAC-SHA256 signature and timestamp per Telegram’s spec. Profile data includes user ID, name, username, and optional photo. Telegram does not provide email via the widget; collect email separately if needed.

How is this guide?

Last updated on

LinkedIn OAuth

Add LinkedIn as an OAuth provider.

Okta OAuth

Add Okta as an OIDC/OAuth provider.

On this page

Create a Telegram Bot
Add Telegram Provider in Hanzo IAM
Logging In with Telegram
Authentication flow