Creating an OAuth 2.0 Resource Server

If you have an EnterpriseOne configuration through Oracle Access Manager (OAM), then you can follow the following steps to set up an OAuth 2.0 resource server with OAM:

1. Log in to the Oracle Access Management console.

   The Launch Pad opens.

2. Click Mobile OAuth Services.

3. Select the default domain or create a domain.

4. Click the Resource Servers tab.

5. On the Custom Resource Server Configuration page, complete the following fields:

   Name

   The name of this resource server (or resource service).

   Description

   (Optional) A short description to help you or another administrator identify this resource server in the future.

   Allow Token Attributes Retrieval

   Select this option to allow custom attributes (both attribute names and values) to be shared with clients and the resource owner.

   For more information, see "Configuring OAuth Service Profiles" in the Oracle Fusion Middleware Administrator's Guide for Oracle Access Management for All Platforms.

   Authorization & Consent Service Plug-in

   From the menu, choose an authorization plug-in for the resource server. This plug-in type defines security policy around interactions where authorization and user consent are granted. It can influence claims in a generated token as well.

   Resource Server ID

   The unique ID created for this resource server during registration.

   Scope

   Click Add to add a new row to the scopes table.

   Note: JD Edwards EnterpriseOne supports only single scope and all orchestrations are validated for single scope.

   Name

   Type a scope definition. Use dot notation, for example: photo.read.

   Description

   Type a short note that describes the scope.

   For more information, see "Understanding the OAuth Resource Servers Configuration Page" in the Oracle Fusion Middleware Administrator's Guide for Oracle Access Management for All Platforms.

6. Click Save.