For private applications, store the client_secret securely as it cannot be retrieved later
Public applications use PKCE flow and don’t receive a client secret
The provided scopes (email profile) allow access to basic user information
Contact the CoLoop team to set up your OAuth application during the Alpha phase. In future releases, this process will be self-serve through our developer portal.