How to authenticate EOS (Epic Online Services) users with UGS OpenID connect?

sampenguin · October 12, 2023, 9:15pm

Hi I’m trying to authenticate Epic Games store users with my UGS setup for a Standalone_Windows build (UGS: Economy and CCD for addressables) This doc mentions using the OpenID api should work with EOS specifically.
https://docs.unity.com/ugs/manual/authentication/manual/openid-connect

Currently I’m successfully authenticating with EOS directly using their Persistent Auth mode, and seeing the correct ClientID and AccountID being reported in the editor log. However, when I then try to authenticate with UGS using

AuthenticationService.Instance.SignInWithOpenIdConnectAsync(openIDProviderName, Token);

it is failing with a message of:

[Authentication]: Request failed: 401, {"title":"PERMISSION_DENIED","detail":"validation failed","details":[ ],"status":401},

I know the openIDProviderName is correct because I previously had that wrong and corrected it. But I don’t know what I should be passing to this call as the Token from the EOS callback. I am currently passing an EpicAccountId called SelectedAccountId from their LoginCallbackInfo, but clearly that’s incorrect. I don’t see any other mention on EOS or Unity docs of what string to pass along as that token for OpenID to work… any suggestions?

sampenguin · October 12, 2023, 10:25pm

Update: I solved this problem, thanks to stumbling across someone else’s very helpful github post (at Epic Game SDK Unity Integration · GitHub)

AuthInterface auth = EOSManager.Instance.GetEOSAuthInterface();
if (null == auth)
{
Debug.LogError($"[Auth] Unable to GetEOSAuthInterface, is EOSManager present?");
OnEOSLoginFailed();
return;
}

CopyIdTokenOptions options = new CopyIdTokenOptions();
options.AccountId = selectedAccountId; // from loginCallbackInfo.SelectedAccountId;
Result result = auth.CopyIdToken(ref options, out localToken);
if (result != Result.Success)
{
Debug.LogError($"[Auth] Error copying ID token: [{result}]");
OnEOSLoginFailed();
return;
}

await AuthenticationService.Instance.SignInWithOpenIdConnectAsync(openIDProviderName, localToken?.JsonWebToken);

Debug.Log($"[AuthenticationManager] ... Sign In Success! PlayerID: {AuthenticationService.Instance.PlayerId}"); //Display the Unity Authentication PlayerID```

AdroviciKQ · March 24, 2025, 2:51pm

What did you put in OIDC Issuer (URL)? I am getting "Request failed: 401, {"detail":"invalid issuer","details":[],"status":401,"title":"PERMISSION_DENIED"}"

sandolkakos · May 21, 2025, 5:31pm

use this OIDC Issuer (URL) for Epic Online Services: https://api.epicgames.dev/epic/oauth/v1

Topic		Replies	Views
Does UGS player accounts implement the OpenID protocol? Unity Services Authentication , Question	2	145	March 28, 2025
EOS (Epic Online Services): InvalidParameters on ExternalAuth using Connect Interface Unity Engine 2022-3-LTS , Intermediate , Game-Development , Question	1	589	October 15, 2024
How to connect Unity's UGS authentication using custom OpenID to use with Google's oAuth2 Questions & Answers Authentication , Question	1	214	June 2, 2025
Looking for documentation/guide to: authenticate user with email and pw and make it work with UGS Unity Services Authentication , Question , com_unity_services_authentication	2	1311	February 17, 2023
Authentication from our own authentication server Unity Services Authentication , Question , com_unity_services_authentication	4	1408	June 2, 2025

How to authenticate EOS (Epic Online Services) users with UGS OpenID connect?

Related topics