Notice: We're retiring Works with Nest. See the home page for more information.

Configure Redirect URIs

If your product has a browser component, the best practice is to include a redirect URI. The redirect URI allows the PIN to be communicated transparently so that the user doesn't need to enter it manually. The redirect URI should point to a site on your server or in your cloud.

  • One common use case for a redirect URI is to bring up a page that has a structure picker, allowing the user to select a primary residence or a vacation home, for example.

  • Another example might be a deep link within your mobile app.

  • A third example is when the validation accepts localhost. In this case, the URI doesn't actually function as a redirect, but takes the authorization code and uses it to exchange for a token.

Use multiple redirect URIs

With multiple redirect URIs, a Works with Nest single client can be released to multiple locales or tested in different environments, each with its own URI.

Typically, applications are deployed to multiple sites:

  • Production sites
  • Sites where you perform local development
  • Test servers where you perform different testing activities

It makes sense to set up multiple redirect URIs in your Works with Nest client so that you can have multiple locales, multiple app types (web, mobile), and mobile deep linking with platform-specific URIs.

For deep links, your URIs must conform to the RFC 3986 URI standard and must not start with https or http.

In general, the custom URI scheme in string form has the syntax: [scheme:]scheme-specific-part[#fragment]

Some examples are:

  • myapp://a/random/path
  • myapp://?foo=1&bar=2

Set up redirect URIs

  1. In the client configuration, specify multiple (up to 10) redirect URIs. URIs can have up to 2083 characters.

  2. In the authorization URL, include the redirect_uri query parameter.


Pub/Sub project creation/selection
  • Default URIhttp://localhost:5000
  • Additional redirect URIshttp://localhost:3000 and http://localhost:80

In the authorization URL, make sure to URL-encode the URI by running the urlencode command.

For example:

$ urlencode http://localhost:3000


You can then use this encoded version in the authorization URL, as shown here:[client_id]&state=STATE&redirect_uri=http%3A%2F%2Flocalhost%3A3000

If you omit the redirect_uri query parameter, the default redirect URI is used.

So in our example:[client_id]&state=STATE&redirect_uri=http%3A%2F%2Flocalhost%3A5000

is equivalent to having no redirect_uri:[client_id]&state=STATE