Authenticate
The BRM REST Services Manager API uses OAuth 2.0 access tokens to authenticate requests from clients.
Before you can send requests to REST API services, you must acquire a valid OAuth access token. Then, your clients must pass the token in the header of every request sent to a BRM REST Services Manager API service.
Note:
Authentication and OAuth 2.0 access tokens are required for production systems only. In a test system, you can send requests to the BRM REST Services Manager API without a token in the header.
You can use either Oracle Identity Cloud Service or Oracle Access Management to set up authentication for your client requests. See: