Identity Propagation with OAuth

Oracle Cloud also supports OAuth 2.0, an open standard for authorization. This protocol allows Internet users to authorize websites or applications to access their information on other websites but without sharing passwords, making it easy for users to share information about their accounts with third party applications or websites.

Why Use OAuth?

Use OAuth 2.0 to define authorization in JCS–SaaS Extension for your custom applications. OAuth 2.0 has an authorization framework, commonly used for third-party authorization requests with consent. Custom applications can implement two-legged OAuth flows only. OAuth 2.0 provides the following benefits:

  • It increases security by eliminating the use of passwords in service-to-service REST interactions.

  • It reduces the lifecycle costs by centralizing trust management between clients and servers. OAuth reduces the number of configuration steps to secure service-to-service communication.

Both JCS-SaaS Extension and the SaaS application instances to which it will be propagating identity should be provisioned in the same identity domain. This way, the resources and clients needed for communicating using OAuth are automatically configured along with an OAuth server, which is used for obtaining the tokens.

Sample Use Case

You can find a sample use case that shows you how to associate a JCS-SaaS Extension client with a SaaS resource in Propagating ID with OAuth.