Skip to main content
rebootpy provides several authentication methods to connect your bot to Epic Games services. Each method has different use cases and requirements.

Available Authentication Methods

The recommended authentication method for production bots. Device authentication uses stored credentials that persist across sessions. 
import rebootpy

bot = commands.Bot(
    command_prefix='!',
    auth=rebootpy.DeviceAuth(
        device_id='your_device_id',
        account_id='your_account_id',
        secret='your_secret'
    )
)
Learn more about DeviceAuth

AdvancedAuth (Best for Getting Started)

A flexible authentication method that tries multiple authentication strategies automatically. Perfect for development and getting started quickly. 
import rebootpy

bot = commands.Bot(
    command_prefix='!',
    auth=rebootpy.AdvancedAuth(
        prompt_device_code=True,
        open_link_in_browser=True
    )
)
Learn more about AdvancedAuth

DeviceCodeAuth

Authenticate using device code flow. Opens a browser for login and doesn’t require copying codes manually. 
import rebootpy

bot = commands.Bot(
    command_prefix='!',
    auth=rebootpy.DeviceCodeAuth(
        open_link_in_browser=True
    )
)
Learn more about DeviceCodeAuth

AuthorizationCodeAuth

Authenticate using a one-time authorization code from Epic Games. 
import rebootpy

bot = commands.Bot(
    command_prefix='!',
    auth=rebootpy.AuthorizationCodeAuth(
        code='your_authorization_code'
    )
)
Learn more about AuthorizationCodeAuth

ExchangeCodeAuth

Authenticate using an exchange code. Requires custom solutions to obtain the code. 
import rebootpy

bot = commands.Bot(
    command_prefix='!',
    auth=rebootpy.ExchangeCodeAuth(
        code='your_exchange_code'
    )
)
Learn more about ExchangeCodeAuth

Comparison

MethodEase of UseProduction ReadyRequires Manual InputPersists Across Sessions
DeviceAuthMediumYesNo (after initial setup)Yes
AdvancedAuthHighYesOptionalYes (auto-generates device auth)
DeviceCodeAuthHighYesYes (browser login)No
AuthorizationCodeAuthMediumNoYes (copy code)No
ExchangeCodeAuthLowNoYes (custom solution)No

Quick Start Recommendation

  1. For Development: Start with AdvancedAuth or DeviceCodeAuth for the easiest setup
  2. For Production: Use DeviceAuth with stored credentials for reliability
  3. Migration Path: Use AdvancedAuth to automatically generate device auth credentials, then switch to DeviceAuth

Common Attributes

All authentication methods provide these attributes:
authorization
str
The Authorization header for use with Fortnite endpoints. Use this if you’re making HTTP requests that aren’t already implemented.
account_id
str
The account ID of the authenticated user.

Security Best Practices

Never commit authentication credentials to version control. Use environment variables or secure credential storage.
  • Store device auth credentials securely
  • Use environment variables for sensitive data
  • Rotate credentials periodically
  • Monitor for unauthorized access
  • When device auth is compromised, reset your Epic Games password to invalidate all device auths