OAuth 2.0 Provider data instances
|
|
Complete the OAuth 2.0 Provider tab to specify the configuration details that are required to connect to an external application by using OAuth 2.0. Consult the API guide of the external application to learn how to obtain the values that are required for the fields on this form.
Enter the basic details for the OAuth 2.0 provider.
Field |
Description |
Grant type | Select a grant type for the OAuth 2.0 Provider data instance. The Pega 7 Platform supports the client credentials and authorization code grant types. |
Authorization code endpoint | Enter the authorization code endpoint URL that is specified in the API guide of the application that you want to connect to. Calls to this endpoint produce an access token that you can use to access protected resources in the external application for a defined period of time. |
Access token endpoint | Required. Enter the access token URL that is specified in the API guide of the application that you want to connect to. Calls to this endpoint produce an access token that you can use to access protected resources in the external application for a defined period of time. |
Revoke token endpoint | Enter the revoke token URL that is specified in the API guide of the application that you want to connect to. Calls to this endpoint revoke issued access tokens. |
Send client credentials as | Select whether you want to send the client credentials (client ID and client secret) to the external application as a part of the Authorization header or body of the POST request (Post body). |
Send access token as | Select whether you want to send the access token to the external application as a part of the Authorization header or as a Query string parameter. |
Configure a secure protocol to connect to the external application.
Field |
Description |
Lowest allowable SSL/TLS version |
Select the version of SSL or TLS protocol that you want to use to securely connect to the external application by using OAuth 2.0. |
Configure the truststore and keystore settings to secure your connection with the external application.
Field |
Description |
Truststore | Select or create a Truststore record that contains the server certificate to use in the TLS/SSL handshake. |
Keystore | Select or create a Keystore record that stores the Pega 7 Platform client's private/public key pair that is used by the server to authenticate the client. |