Security enhancements to IP Vault and new Gemini 3.1 Flash Live STS model for Convo mode
API Documentation
Runtime API
- GETInitiate SSO login
- POSTSSO callback
- POSTGitHub Marketplace webhook receiver
- GETStart the Google Services (per-user) OAuth consent flow
- GETGoogle Services OAuth callback
- GETValidate the caller's stored Google Services token
- DELRevoke the caller's stored Google Services token
- GETStart the Google OAuth flow for an institution-level token
- GETValidate an institution's stored Google token
- DELRevoke an institution's stored Google token
- GETComplete the Canvas LMS API authorization handoff
Administrator API
- GETInitiate SSO login
- POSTSSO callback
- POSTGitHub Marketplace webhook receiver
- GETStart the Google Services (per-user) OAuth consent flow
- GETGoogle Services OAuth callback
- GETValidate the caller's stored Google Services token
- DELRevoke the caller's stored Google Services token
- GETStart the Google OAuth flow for an institution-level token
- GETValidate an institution's stored Google token
- DELRevoke an institution's stored Google token
- GETComplete the Canvas LMS API authorization handoff
curl --request GET \
--url https://pria.praxislxp.com/api/auth/google/institution/authorize \
--header 'Authorization: Bearer <token>'{
"error": "Institution ID required"
}Start the Google OAuth flow for an institution-level token
Begins an institution-scoped Google OAuth 2.0 authorization-code flow. The
resulting token is later stored on Institution.cloudServices.google.googleLoginToken
and is used as the shared institution credential for downstream Google API
calls performed on behalf of any member of that institution.
The caller MUST hold institutions.edit on the target institution (checked via
checkRAPForUI). The captured session state records the connecting user’s _id
(connectedByUserId) so the callback can attribute the connection.
curl --request GET \
--url https://pria.praxislxp.com/api/auth/google/institution/authorize \
--header 'Authorization: Bearer <token>'{
"error": "Institution ID required"
}Documentation Index
Fetch the complete documentation index at: https://docs.praxis-ai.com/llms.txt
Use this file to discover all available pages before exploring further.
Authorizations
JWT token passed in authorization header
Query Parameters
ObjectId of the institution to attach the token to.
Comma-separated Google service names. Resolved via
GoogleServicesConfig.buildScopes.
Response
Redirect to Google's OAuth consent screen. On error during initiation
(configuration / lookup failure) the user is redirected to
${PRIA_URL}/oauth/success?error=auth_initiation_failed instead.
Was this page helpful?