Prerequisites for Creating a Connection

These are the prerequisites for creating a connection with the Oracle Fusion Field Service Adapter.

Manage Permissions and Restrictions for the Selected User Types

You must manage permissions and restrictions for the selected Oracle Fusion Field Service user types.

See Configure User Types in Administering Oracle Fusion Field Service.

Create an Application

If you want to call REST or SOAP APIs from a third-party application, you must register the third-party application in Oracle Field Service. You can also select the authentication service to use to authenticate the application and the specific APIs for your application to use.

Note:

This information only applies to Oracle Field Service environments. You can verify whether you have Oracle Field Service or Oracle Fusion Field Service, by signing in and checking the About page.

See Create an Application in Administering Oracle Fusion Field Service.

Add and Manage an Oracle Integration Application

You must add an Oracle Integration application to integrate Oracle Fusion Field Service with other applications. Once completed, you can perform management tasks on the Oracle Integration application.

To... See...
Add an Oracle Integration application Add an Oracle Integration Application
Modify existing endpoint configurations in an Oracle Integration application Modify an Oracle Integration Application
Delete an Oracle Integration application Delete an Oracle Integration Application
View an Oracle Integration application details, such as its status and the data transfer success rate View an Oracle Integration Application Details

Perform Prerequisites to Use the OAuth Authorization Code Security Policy

You must perform prerequisites in Oracle Fusion Field Service and the Oracle Cloud Infrastructure Console to use the OAuth Authorization Code security policy with the Oracle Fusion Field Service Adapter.

Configure Oracle Fusion Field Service

You must configure Oracle Fusion Field Service to use the OAuth Authorization Code security policy with the Oracle Fusion Field Service Adapter.

  1. Synchronize the users from the external identity storage to Oracle Fusion Field Service.
  2. In the Field Service Manage interface, click Configuration and select Applications.
  3. In the left pane, select the application to configure the token service.
  4. Under General info, ensure that the Active checkbox is selected.
  5. From the Token service list, select External.
  6. Under Authentication Settings, select the Authentication using external access token checkbox.
  7. Click Upload and upload your external token service's signing key certificate.
  8. Authenticate the REST API with the external token service.

Configure Oracle Cloud Infrastructure Identity and Access Management

You must create two confidential applications in Oracle Cloud Infrastructure Identity and Access Management to use the OAuth Authorization Code security policy with the Oracle Fusion Field Service Adapter.

Create a Resource Server Confidential Application

  1. Sign in to the Oracle Cloud Infrastructure Console.
  2. In the navigation pane, click Identity & Security.
  3. Click Domains.
  4. Select your compartment.
  5. Click the identity domain.
  6. In the menu bar, click Integrated applications.
  7. Click Add application.
  8. Select Confidential Application, then click Launch workflow.
  9. Enter a name (for example, OFS Resource Server App).
  10. Enter a description (for example, OFS Resource Server App).
  11. Click Submit.
  12. Click the OAuth configuration tab, then the Edit OAuth configuration subtab.
  13. In the Resource server configuration section, select Configure this application as a resource server now.
  14. In the Configure application APIs that need to be OAuth protected section, select 86400 from the Access token expiration (seconds) list.
  15. Click the Allow token refresh toggle.
  16. In the Refresh token expiration (seconds) list, select 604800.
  17. In the Primary audience field, enter the Oracle Fusion Field Service instance name.
  18. Click the Add scope toggle, then click Add.
  19. Provide the scope value as follows:
    /REST_application_id_For_IAM

    You get this value when you define the REST application ID for the new application. See Configure Oracle Fusion Field Service.

  20. Provide a display name and description, then click Add.
  21. Click Submit.

Create an Oracle Fusion Field Service API Client Confidential Application

  1. Click Add application.
  2. Select Confidential Application, then click Launch workflow.
  3. Enter a name (for example, OFS API Client) and description.
  4. Click Submit.
  5. Click the OAuth configuration tab, then the Edit OAuth configuration subtab.
  6. In the Client configuration panel, select Configure this application as a client now.
  7. Select Refresh token and Authorization code in the Allowed grant types section.
  8. In the Redirect URL field, enter the URL for post-authentication redirection.
    https://OIC_URL/icsapis/agent/oauth/callback
  9. For Client type, ensure that Confidential is selected.
  10. Scroll down to the Token issuance policy section.
  11. Select Confidential in the Authorized resources section.
  12. Click the Add Resources toggle.
  13. Click Add scope, then click Add.
  14. Provide the scope value as follows:
    OFS_Instance_Name/REST_application_ID_For_IDCS
  15. Provide a display name and description, then click Add.
  16. Click Submit.
  17. In the General Information section, note the client ID and client secret values. These values are required for the third-party application that is communicating with the identity domain.

Create an Oracle Fusion Field Service Adapter Connection with the OAuth Authorization Code Security Policy

After creating the two confidential applications in the Oracle Cloud Infrastructure Console and configuring Oracle Fusion Field Service, you can create an Oracle Fusion Field Service Adapter connection with the OAuth Authorization Code security policy.

See Configure Connection Security.

Perform Prerequisites to Use the OAuth Client Credentials Security Policy

You must perform prerequisites in the Oracle Cloud Infrastructure Console to use the OAuth Client Credentials security policy with the Oracle Fusion Field Service Adapter.

  1. Log in to the Oracle Cloud Infrastructure Console with your identity domain administrator credentials.
  2. In the navigation pane, click Identity & Security.
  3. Click Domains.
  4. Select your compartment.
  5. Select the identity domain.
  6. In the menu bar, click Oracle cloud services.


    The Identity domain navigation pane shows entries. The Overview option is selected. Below this are selections for Overview, User management, Administrators. Dynamic groups, Directory integrations, Integrated applications, Oracle Cloud Services, Federation, and Domain policies.

  7. Select Field Service from the list.
  8. Select OAuth Configuration and scroll down to the General Information section.
  9. Copy the Client ID and Client secret values.

    You specify these values when you configure the OAuth Client Credentials security policy on the Connections page.


    The image shows Identity & Security at the top. Below this, the Domains tab is selected in the left navigation pane. On the right, the OAuth configuration tab is selected in the horizontal header menu. The General Information section is shown, which includes an entry for Client ID. Below this, the Client secret section is shown, with entries for Show secret and Regenerate. The Regenerate section includes a Regenerate secret button.