Creating an OAuth 2.0 Client
Complete the following steps to create an OAuth 2.0 client:
Log in to the Oracle Access Management console.
The Launch Pad opens.
Click Mobile OAuth Services.
The OAuth Identity Domains page opens.
Select the default domain or create a domain.
Click the OAuth Clients tab.
To create an OAuth Web client, click the Create button located directly under the OAuth Web Clients heading and complete the following fields:
- Name
The name of this OAuth client.
- Description
(Optional) A short description to help you or another administrator identify this OAuth Web client in the future.
- Client ID
The unique ID that the authorization server created for this client during registration. The client ID must be a valid JD Edwards EnterpriseOne user.
- Allow Token Attributes Retrieval
Select this option to allow custom attributes (both attribute names and values) to be shared with resource servers and the resource owner.
- Client Secret
A secret value known to the OAuth authorization service and the client. The authorization service checks the client secret and the client ID when it receives token endpoint requests from the client.
- Privileges
- Bypass User Consent
If selected, the client will not ask for the user's explicit authorization to access the user's protected resources.
This option must be selected for the OAuth 2.0 to work as JD Edwards EnterpriseOne supports only two legged OAuth authentication for AIS services and orchestrations.
- Allowed Scopes
Lists the range of access the client has to the requested resources. To grant additional access, click Add to add a row to the table, then choose from the drop-down menu the scope to be added.
- Grant Types
- Client Credentials
The client requests an access token using only its client credentials.
For more information, see "Understanding the OAuth Web Clients Configuration Page" in the Oracle Fusion Middleware Administrator's Guide for Oracle Access Management for All Platforms.
Click Save.