Prerequisites for Creating a Connection

You must satisfy the following prerequisites to create a connection with the GCP Storage Adapter.

Note:

List Buckets is the minimum permission required by you to create the connection. You can add more permissions as per the actions you want to invoke.

• Use Authorization Code Credentials Security Policy
• Use JWT User Assertion for OAuth Security Policy
• Import Private Keys for the JWT User Assertion for OAuth Security Policy

Use Authorization Code Credentials Security Policy

You must satisfy the following prerequisites to create a connection with the Authorization Code Credentials Security Policy.

• Create a project ID in the Google Cloud console. See Create a Google Cloud project.

• Register a web application in the Google Cloud console and obtain the client ID and client secret. See OAuth client ID credentials.

  Note:

  You must enter the client ID in the Google Client ID field and the secret key in the Google Client Secret field on the Connections page. See Configure Connection Security.

Use JWT User Assertion for OAuth Security Policy

You must satisfy the following prerequisites to create a connection with the JWT User Assertion for OAuth Security Policy.

• Create a project ID in the Google Cloud console. See Create a Google Cloud project.

• Create a service account in the Google Cloud console and add keys to the respective service account. See Create service accounts.

Import Private Keys for the JWT User Assertion for OAuth Security Policy

Private keys must be imported to Oracle Integration as a certificate. The following steps describe how to promote private keys to Oracle Integration:

1. Go to Key section in the service account.
2. Click Add Key.
3. Select the JSON option, and click Create. After creating the new key file, it gets downloaded in JSON format.
4. Store the file safely because it contains account-related information and may not be reproducible.

   This JSON file contains the private key and the client_x509_cert_url provides you with the link for the certificate.

5. Copy the private key from the JSON file and paste it to a new file. Format the private key file by replacing every occurrence of /n with new lines. Save the file with a .pem extension. This formatted key file is the certificate.

   Note:

   Keep the private key (certificate) together in a text file. Save the certificate file with a .pem extension (for example, GCPSignKey.pem).
6. Follow these steps to upload the certificate in Oracle Integration:
   1. In the navigation pane, click Settings, then Certificates..
   2. Click Upload.
   3. Provide the alias name.
   4. Select the type as Signing Key.
   5. Keep the category as Private.
   6. Upload the .pem file you created.
   7. Click Upload.