# Build an App Connections Dashboard (/cookbooks/app-connections-dashboard)
[View source on GitHub](https://github.com/ComposioHQ/composio/tree/next/docs/examples/app-connections-dashboard)
[Build a Chat App](/cookbooks/chat-app) handles authentication in-chat. That works for getting started, but production apps need a dedicated page where users manage their connections. This cookbook builds a dashboard where users can see all available apps, connect via OAuth, and disconnect at any time.
# What you'll build
* A connections dashboard showing all available apps and their auth status
* Connect and disconnect buttons that handle OAuth flows
# Prerequisites
* [Bun](https://bun.sh) (or Node.js 18+)
* [Composio API key](https://platform.composio.dev/settings)
**Stack:** Next.js, `@composio/core`
# Create the project
```bash
bunx create-next-app composio-dashboard --yes
cd composio-dashboard
bun add @composio/core
```
Add your API key to a `.env.local` file:
```bash title=".env.local"
COMPOSIO_API_KEY=your_composio_api_key
```
# Setting up the client
Create `app/api/connections/route.ts`. Initialize the Composio client and set `dynamic = "force-dynamic"` so Next.js always fetches fresh connection data.
```ts no-twoslash title="app/api/connections/route.ts"
import { Composio } from "@composio/core";
const composio = new Composio();
export const dynamic = "force-dynamic";
```
`"user_123"` is a placeholder. In production, replace it with the authenticated user's ID from your auth system. See [Users & Sessions](/docs/users-and-sessions) for details.
# List connections
The `GET` handler creates a session and returns every toolkit's name, logo, and connection status. Toolkits where `isNoAuth` is `true` don't require authentication, so we filter them out.
```ts no-twoslash title="app/api/connections/route.ts"
export async function GET() {
const session = await composio.create("user_123");
const { items } = await session.toolkits({ limit: 50 });
return Response.json({
// Filter out toolkits that don't require authentication
toolkits: items
.filter((t) => !t.isNoAuth)
.map((t) => ({
slug: t.slug,
name: t.name,
logo: t.logo,
isConnected: t.connection?.isActive ?? false,
connectedAccountId: t.connection?.connectedAccount?.id,
})),
});
}
```
`session.toolkits()` returns each toolkit with a `connection` object. When `connection.isActive` is `true`, the user has already authorized that app. We also return the `connectedAccountId` so the frontend can disconnect later.
> `session.toolkits()` paginates results. This example fetches up to 50. Use the `nextCursor` value from the response to fetch the next page.
# Connect an app
The `POST` handler starts an OAuth flow for a given toolkit and returns the redirect URL.
```ts no-twoslash title="app/api/connections/route.ts"
export async function POST(req: Request) {
const { toolkit }: { toolkit: string } = await req.json();
const origin = new URL(req.url).origin;
const session = await composio.create("user_123");
const connectionRequest = await session.authorize(toolkit, {
callbackUrl: origin,
});
return Response.json({ redirectUrl: connectionRequest.redirectUrl });
}
```
`session.authorize(toolkit)` creates a connection request with a `callbackUrl`. After the user completes OAuth, they get redirected back to your app.
# Disconnect an app
Create `app/api/connections/disconnect/route.ts`. This endpoint takes a `connectedAccountId` and deletes it:
```ts title="app/api/connections/disconnect/route.ts"
import { Composio } from "@composio/core";
const composio = new Composio();
export async function POST(req: Request) {
const { connectedAccountId }: { connectedAccountId: string } =
await req.json();
await composio.connectedAccounts.delete(connectedAccountId);
return Response.json({ success: true });
}
```
`composio.connectedAccounts.delete()` is a standalone SDK method. No session or provider needed.
# Build the dashboard
Replace `app/page.tsx` with a dashboard that shows connection cards:
```tsx title="app/page.tsx"
"use client";
import { useEffect, useState } from "react";
type Toolkit = {
slug: string;
name: string;
logo?: string;
isConnected: boolean;
connectedAccountId?: string;
};
export default function Dashboard() {
const [toolkits, setToolkits] = useState
)}
{t.name}
{t.isConnected ? "Connected" : "Not connected"}
{t.isConnected ? (
) : (
)}
))}
);
}
```
The page fetches toolkit connection status on load. Clicking **Connect** redirects the user to OAuth. After they authorize, the `callbackUrl` brings them back to the dashboard with the connection now active. Clicking **Disconnect** deletes the connection and refreshes the list.
# Complete route
The full `app/api/connections/route.ts` with both handlers:
```ts title="app/api/connections/route.ts"
// region setup
import { Composio } from "@composio/core";
const composio = new Composio();
export const dynamic = "force-dynamic";
// endregion setup
// region list
export async function GET() {
const session = await composio.create("user_123");
const { items } = await session.toolkits({ limit: 50 });
return Response.json({
// Filter out toolkits that don't require authentication
toolkits: items
.filter((t) => !t.isNoAuth)
.map((t) => ({
slug: t.slug,
name: t.name,
logo: t.logo,
isConnected: t.connection?.isActive ?? false,
connectedAccountId: t.connection?.connectedAccount?.id,
})),
});
}
// endregion list
// region connect
export async function POST(req: Request) {
const { toolkit }: { toolkit: string } = await req.json();
const origin = new URL(req.url).origin;
const session = await composio.create("user_123");
const connectionRequest = await session.authorize(toolkit, {
callbackUrl: origin,
});
return Response.json({ redirectUrl: connectionRequest.redirectUrl });
}
// endregion connect
```
# Running the app
```bash
bun dev
```
Open [localhost:3000](http://localhost:3000). You'll see all available apps with their connection status.
1. Click **Connect** on GitHub. You'll be redirected to GitHub's OAuth page.
2. Authorize the app. You'll land back on the dashboard with GitHub showing "Connected."
3. Click **Disconnect** on GitHub. The connection is removed immediately.
# Take it further
- [Managing multiple connected accounts](/docs/managing-multiple-connected-accounts):
Let users connect multiple accounts for the same toolkit
- [Connected accounts](/docs/auth-configuration/connected-accounts):
List, refresh, disable, and delete user connections
---
📚 **More documentation:** [View all docs](https://docs.composio.dev/llms.txt) | [Glossary](https://docs.composio.dev/llms.mdx/docs/glossary) | [Cookbooks](https://docs.composio.dev/llms.mdx/cookbooks) | [API Reference](https://docs.composio.dev/llms.mdx/reference)
---
# Composio SDK — Instructions for AI Code Generators
**Purpose:** Enforce only the **current** and **correct** patterns for integrating [Composio](https://composio.dev/) tools into AI agents.
**Scope:** All AI-generated code using Composio must follow these guardrails.
---
## 1. Correct Composio Integration
Composio supports two integration modes: **Native Tools** (with a provider package) and **MCP** (no provider package needed).
### Native Tools
```python
# ✅ CORRECT — Python (defaults to OpenAI)
from composio import Composio
composio = Composio()
session = composio.create(user_id="user_123")
tools = session.tools()
# Pass tools to your agent/LLM framework
```
```typescript
// ✅ CORRECT — TypeScript (defaults to OpenAI)
import { Composio } from "@composio/core";
const composio = new Composio();
const session = await composio.create("user_123");
const tools = await session.tools();
// Pass tools to your agent/LLM framework
```
For other providers, pass the provider explicitly. Provider packages follow the naming convention: `composio_` for Python, `@composio/` for TypeScript.
### MCP
Use `session.mcp.url` and `session.mcp.headers` with any MCP-compatible client (Claude Desktop, Cursor, OpenAI Agents, etc.). No provider package needed.
---
## 2. CRITICAL INSTRUCTIONS FOR AI MODELS
### 2.1 — ALWAYS DO THE FOLLOWING
1. **Use `composio.create(user_id)`** to create a session — this is the entry point for all Composio integrations.
2. **Use `session.tools()`** for native tool integration or **`session.mcp.url`** for MCP integration.
3. **Import** from the correct provider package (`composio_` for Python, `@composio/` for TypeScript).
4. **Pass `user_id` to `composio.create()`**, not to individual tool calls.
### 2.2 — NEVER DO THE FOLLOWING
1. **Do not** instruct users to manually create auth configs or connected accounts before running.
2. **Do not** import from `composio_openai` / `@composio/openai` when using OpenAI Agents SDK — use `composio_openai_agents` / `@composio/openai-agents` instead.
### 2.3 — DISCOURAGED (do not use unless user explicitly asks)
Do **not** generate `composio.tools.get()`, `composio.tools.execute()`, or `composio.provider.handle_tool_calls()` unless the user explicitly requests direct tool execution. These are a supported but **not recommended** low-level interface.
---
## Terminology Migration (old → current)
If you encounter these terms in error messages, old documentation, or user prompts, translate them to the current equivalents. **Do not use the old terms in generated code or explanations.**
| Old term (v1/v2) | Current term (v3) | In code |
|---|---|---|
| entity ID | user ID | `user_id` parameter |
| actions | tools | e.g., `GITHUB_CREATE_ISSUE` is a *tool* |
| apps / appType | toolkits | e.g., `github` is a *toolkit* |
| integration / integration ID | auth config / auth config ID | `auth_config_id` parameter |
| connection | connected account | `connected_accounts` namespace |
| ComposioToolSet / OpenAIToolSet | `Composio` class with a provider | `Composio(provider=...)` |
| toolset | provider | e.g., `OpenAIProvider` |
If a user says "entity ID", they mean `user_id`. If they say "integration", they mean "auth config". Always respond using the current terminology.