1. Marketplace Overview
FireAPI
  • Getting Started
    • Welcome to FireAPI.io
    • What is API Hub & App/Tool
    • Publish App/Tool
    • Publish API
  • Marketplace Overview
    • Marketplace
    • FireAPI SSO Authentication
    • Subscription Handling
    • Sample Marketplace App/Tool
    • WebGuard Frontend Documentation
    • WebGuard Backend Documentation
    • FireAPI Tool Setup Guide
  • FireAPI App/Tool - SSO Integration Examples (Common Languages)
    • All Languages
    • CURL Example (Universal)
    • JavaScript (Node.js / Express)
    • PHP Example (Native PHP)
    • Laravel Example (Recommended for PHP Developers)
    • Python Example (Flask)
    • Python Example (FastAPI)
    • Java Example (Spring Boot)
    • Go Example (Golang)
    • Best Practice (All Languages)
  1. Marketplace Overview

WebGuard Backend Documentation

WebGuard Backend is a Node.js/Express service responsible for:
validating FireAPI SSO sessions
syncing user profiles into local database
issuing tool-specific access tokens
providing protected API endpoints

šŸš€ Installation#

āš™ļø Environment Setup#

Create .env file:

Required variables#

DATABASE_URL ā†’ MySQL/PostgreSQL connection string
FIREAPI_BACKEND_URL ā†’ FireAPI main backend URL (example: http://localhost:8000)
FRONTEND_URL ā†’ WebGuard frontend URL (example: http://localhost:5007)
PORT ā†’ Backend port (default: 4010)

šŸ—„ļø Database Initialization (Prisma)#

ā–¶ļø Run Development Server#

šŸ”‘ FireAPI SSO Flow (Backend)#

How it works#

1.
User opens tool from FireAPI dashboard
2.
FireAPI redirects user with token
3.
WebGuard backend calls FireAPI verify endpoint
4.
FireAPI returns metadata (user, toolId, plan)
5.
WebGuard syncs user into local database
6.
Backend returns a local session for frontend

ā­ Main SSO Endpoint#

POST /api/users/sso-login#

Body:
{
  "token": "string",
  "userData": {}
}
Purpose:
authenticates FireAPI user
creates or updates user record
returns local session response

šŸ› ļø Backend API Endpoints#

Users & Authentication#

MethodEndpointDescription
POST/api/users/sso-loginFireAPI SSO login
POST/api/users/verifyInternal token verification
GET/api/usersList all users (Admin)
DELETE/api/users/:idRevoke user access

Tool Tokens#

MethodEndpointDescription
POST/api/tokensIssue new API token
GET/api/tokens/check-status/:idToken status check

šŸ“‚ Backend Structure#

src/
ā”œā”€ā”€ controllers/    # Users and Tokens logic
ā”œā”€ā”€ routes/         # Express routes
ā”œā”€ā”€ utils/          # Prisma client, Logger
ā””ā”€ā”€ index.ts        # Middleware + server entry

šŸ’” Tips#

If CORS fails, ensure FRONTEND_URL matches the browser URL.
Use npx prisma studio to debug DB records easily.
Modified atĀ 2026-03-26 17:47:15
Previous
WebGuard Frontend Documentation
Next
FireAPI Tool Setup Guide
Built with