Dynamic system settings for OAuth 2.0 ROPC authentication for mobile apps
When you configure user authentication with OAuth 2.0 tokens, using the
Resource Owner Password Credentials (ROPC) authentication flow, you create several dynamic
system settings to enable authentication.
For more information, see Creating dynamic system settings for OAuth 2.0 ROPC authentication for mobile apps.
| Setting name | Scope | Description |
|---|---|---|
| OAuth2/userinfo_url | Pega-AppDefinition | The URL of the userinfo endpoint that conforms to the OpenID Connect 1.0 protocol. This endpoint is exposed by the authenticattion server. Pega Platform connects to this endpoint to obtain basic information about its users. |
| OAuth2/tokeninfo_url | Pega-AppDefinition | The URL of the tokeninfo endpoint. Pega Platform connects to this endpoint to validate the token information. |
| authentication/maxLoginAttemptsCount | Pega-Engine | This setting is used for handling OAuth 2.0 server connectivity problems. Set the value to a number of failed attempts to connect to the userinfo endpoint of the OAuth 2.0 server that can occur before Pega Platform returns an internal server error. |