Specify an OAuth profile

An OAuth profile includes the grant type that the third-party OAuth provider needs to obtain access to the restricted resource.

Before you begin

Role required: admin

About this task

Procedure

Open a third-party OAuth provider record.
In the OAuth Entity Profiles embedded list, click Insert a new row and then enter a name for the profile.
Right-click the Application Registry form header and select Save.
The system creates the profile record.

Click the name of the profile you created and then fill in the form fields.


Field	Description
Name	Enter a descriptive name.
OAuth provider	Verify the provider that is associated with the profile.
Grant type	Select the grant type: Authorization code: The code that is granted to the client to obtain an access token, which is then used to obtain access to the resource. If you select this option, then you need an authorization URL (the URL of the authorization server). Resource owner password credentials: The user name and password of the user that is trying to obtain access to the resource. Client Credentials: The client ID and client secret, which are both used to get the access token. This method does not provide refresh tokens. JWT Bearer: An authorization server validates a JWT token which enables identity and security information to be shared across security domains.
Is default	Select this option to make the profile the default option for the associated provider.
Embedded list
OAuth Entity Profile Scopes	Specify the OAuth entity scope.

Specify an OAuth profile

An OAuth profile includes the grant type that the third-party OAuth provider needs to obtain access to the restricted resource.

Before you begin

Role required: admin

About this task

Procedure

Open a third-party OAuth provider record.
In the OAuth Entity Profiles embedded list, click Insert a new row and then enter a name for the profile.
Right-click the Application Registry form header and select Save.
The system creates the profile record.

Click the name of the profile you created and then fill in the form fields.


Field	Description
Name	Enter a descriptive name.
OAuth provider	Verify the provider that is associated with the profile.
Grant type	Select the grant type: Authorization code: The code that is granted to the client to obtain an access token, which is then used to obtain access to the resource. If you select this option, then you need an authorization URL (the URL of the authorization server). Resource owner password credentials: The user name and password of the user that is trying to obtain access to the resource. Client Credentials: The client ID and client secret, which are both used to get the access token. This method does not provide refresh tokens. JWT Bearer: An authorization server validates a JWT token which enables identity and security information to be shared across security domains.
Is default	Select this option to make the profile the default option for the associated provider.
Embedded list
OAuth Entity Profile Scopes	Specify the OAuth entity scope.