FAMRO - Innovative solutions for a dynamic world | Our Blog | Discover Discord: How to Build an SSO-Based Discord App in Python

Discover Discord: How to Build an SSO-Based Discord App in Python

Discord is a versatile communication service, initially tailored for gamers yet now expanding into many areas. It's universal and simple, catering to easy voice, video, and text communication. Interested users can establish personal servers, inviting others to join their community and forming different channels for varied purposes.

For tech enthusiasts, one of Discord's significant appeal is its interactive and strong Application Programming Interface (API). Enter Python's discord.py library, a user-friendly platform that bridges the gap between developers and Discord's API. This powerful combo paves the way for automated systems, unique applications, and, most notably, bots.

What is Single Sign On?

Single Sign-On (SSO) is a user authentication process that permits an user to use one set of login credentials (like username and password) to access multiple applications. The service authenticates the primary user logins, then allows the user to navigate into multiple services without requiring them to authenticate again.

SSO is a common solution in enterprises, where it enables the employees to log in to a system of interconnected networks once and gain access to a plethora of applications. A more evolved form of SSO is federated SSO, which allows users to access systems across organizational boundaries.

Through SSO, users experience increased ease of use and reduced password fatigue from different username and password combinations. It's common for users to face 'password frustration' when they are required to remember multiple sets of credentials. SSO mitigates this problem, making processes more seamless for the user, which in turn enhances their productivity.

Additionally, SSO improves security. Having fewer passwords can reduce risk since users won't feel the need to write down their multiple passwords or reuse them - practices which can make their credentials vulnerable.

Discord Single Sign-On (SSO) is a feature that allows users to log in to external applications or services using their Discord credentials. By leveraging Discord SSO, developers can streamline the login process for their users, reducing friction and enhancing the overall user experience. It utilizes OAuth2, a widely adopted authorization framework, ensuring a secure and standardized mechanism for authenticating users.

One of the key benefits of Discord SSO is its simplicity. Users can authorize access to third-party applications without creating new accounts or remembering additional credentials. This is particularly advantageous for services aimed at communities that already rely heavily on Discord for communication and collaboration. By integrating Discord SSO, these services can maintain a seamless connection to their user base.

Discord SSO also enhances security by utilizing Discord’s authentication infrastructure. Users benefit from Discord's existing security features, such as two-factor authentication (2FA) and robust password management.

Additionally, developers gain access to a verified Discord identity, including basic profile details and permissions as defined during the OAuth2 consent process, enabling personalized and secure interactions.

How to setup Discord SSO Application?

To display user information using Discord Single Sign-On (SSO), you need to:

Set Up a Discord Application:

1. Go to the Discord Developer Portal. Login into Discord Developer Portal

2. Click on 'New Application' button to create a new application. You will be redirected to the following page. Create new Application Note. You can't have discord in the application name. When you click on 'Create', new application will be created and you will be redirected to the application page. New application page

3. Go to the Oauth tab/page on your Discord application page. Please use following screenshot for reference. Copy client id and client secret

4. Note the Client ID and Client Secret. Set a redirect URI in the OAuth2 settings. Set Redirect URL

5. We need to select the scopes and permissions. Browse towards the bottom, you will see section called OAuth2 URL Generator: Oauth Scopes and permissions

6. Let's assume we need to identity, email and connections permissions. Please check these permissions under SCOPES: Selected Email, identity, and connections

7. Now select the redirect URL and you will get the generated url. Please copy it:

Setting up a simple Python Flask Application?

Let's setup a very simple Python application using Flask framework. We will need following in order for Discord SSO to work correctly:

- A domain name
- SSL certificate
- Web application that exposes redirect URL (as per Oauth configuration).

Flask code for exposing redirect URL and printing out retrieved user information is given below: from flask import Flask, request, redirect, url_for import os, traceback, requests app = Flask(__name__) #ENVIRONMENT VARIABLES CLIENT_ID = os.environ['CLIENT_ID'] CLIENT_SECRET = os.environ['CLIENT_SECRET'] REDIRECT_URI = os.environ['REDIRECT_URI'] DISCORD_API_BASE_URL = os.environ['DISCORD_API_BASE_URL'] # Route for the root endpoint with GET method @app.route('/', methods=['GET']) def home(): return "<h1><a href='DISCORD-GENERATED URL'>Login into Discord</a></h1>" @app.route( "/redirect", methods=['GET', 'POST'] ) def redirect(): code = request.args.get('code') msg = "" msg += f"Code received: {code}<BR/><BR/>" # Exchange code for access token token_data = { 'client_id': CLIENT_ID, 'client_secret': CLIENT_SECRET, 'grant_type': 'authorization_code', 'code': code, 'redirect_uri': REDIRECT_URI } msg += "Get the Access Token<BR/><BR/>" headers = {'Content-Type': 'application/x-www-form-urlencoded'} token_response = requests.post(f"{DISCORD_API_BASE_URL}/oauth2/token", data=token_data, headers=headers) token_json = token_response.json() access_token = token_json['access_token'] msg += f"Access Token retrieved: {access_token}<BR/><BR/>" # Step 6: Fetch User Information user_headers = {'Authorization': f'Bearer {access_token}'} user_response = requests.get(f"{DISCORD_API_BASE_URL}/users/@me", headers=user_headers) user_info = user_response.json() msg += f"<BR/>User Info: {user_info}<BR/><BR/>" return msg if __name__ == '__main__': app.run(host='localhost', port=5000) In above code, we use environment variables for Discord application related parameters. Please export or set (depending on your OS) appropriately on your server.

We will use nginx as a proxy server for our Flask application. For SSL, we will use free SSL certificate provided by LetsEncrypt. Start your flask application by running the following code: python3 app.py Start the flask application

Now, let's access the home page of your web application. You will see a Discord Login link. Login page Click on the 'Login into Discord' link and you will be redirected to the following page: Discord Application Permissions In order to complete the login, please click on Authorize button to continue. This will complete the login / authorization with Discord and relevant discord user information will be retrieved and displayed on the next page.

Complete Sample Code

You can find complete sample code on our GitHub Repository: Discord SSO Example

Executive Summary

Discord, initially designed for gamers, has expanded its horizon to become a comprehensive communication platform powered by a versatile open API. This API is achievable via several programming languages, however, the simplicity and robustness of Python make it one of the top choices.

A global user base calls for a seamless user experience and Single Sign-On(SSO) can be that secret ingredient. SSO integration in applications, especially those built on platforms like Discord, ensures a unified login system, reducing password fatigue among users and enhancing their experience.

Utilizing Python to interact with the Discord API offers a multitude of opportunities. You can create bots that perform a variety of tasks increasing efficiency and engagement in Discord servers. Let's take a brief look at a simple example of a Discord bot using Python:

This elementary snippet creates a basic Discord bot that logs in and prints out the content of messages it receives.

With Python and Discord, the potential for creating dynamic applications is massive. However, the real game-changer would be understanding the depths of the Discord API and leveraging Python's features to use these functionalities to our advantage.

Imagine bots helping with server moderation, sending scheduled reminders, integrating with other web services for data access, or making game coordination easier. From entertaining game-centric applications to professional productivity tools, the possibilities are endless in bridging the gap between Python and Discord. The combination of Python's simplicity and Discord's versatility can provide a prominent base for innovative applications.

Looking for a reliable tech partner? FAMRO-LLC can help you!

Our development rockstars excels in creating robust and scalable solutions using Django, a powerful Python framework known for its rapid development capabilities and clean, pragmatic design. FAMRO’s team ensures that complex web applications are built quickly and with precision. Their expertise allows businesses to focus on enhancing their digital presence while leaving the intricacies of backend development in skilled hands.

On the deployment side, FAMRO's Infrastructure team takes charge with Kubernetes, a leading platform for container orchestration. Their deep knowledge of Kubernetes ensures that applications are seamlessly deployed, scaled, and managed in cloud environments. By automating key processes like service discovery, load balancing, and resource scaling, FAMRO’s Infrastructure team guarantees that applications not only perform well under high traffic but also remain resilient and easy to maintain. This combination of development and DevOps expertise enables FAMRO to deliver end-to-end, highly scalable solutions.

Please don't hesitate to Contact us for free initial consultation.