Docs/Add Hardware-Backed Sign-In to Your Application/ React (react-oidc-context)
View as .md

React (react-oidc-context)

See the Applications overview for prerequisites, configuration endpoints, and available scopes.

react-oidc-context wraps oidc-client-ts in a React context provider. Key configuration:

  • No client secret needed (public client with PKCE, enabled by default)
  • Vouch does not issue refresh tokens — redirect the user to sign in again when the token expires
  • Hardware attestation claims (hardware_verified, hardware_aaguid) are in the access token JWT — decode with atob(token.split('.')[1]) after base64url character replacement
  • Access the token via auth.user.access_token

Example

spa/react — Complete working example with react-oidc-context, PKCE, and hardware claim extraction from the access token.