Authenticate

The BRM REST Services Manager API uses OAuth 2.0 access tokens to authenticate requests from clients.

Before you can send requests to REST API services, you must acquire a valid OAuth access token. Then, your clients must pass the token in the header of every request sent to a BRM REST Services Manager API service.

Note:

Authentication and OAuth 2.0 access tokens are required for production systems only. In a test system, you can send requests to the BRM REST Services Manager API without a token in the header.

You can use either Oracle Identity Cloud Service or Oracle Access Management to set up authentication for your client requests. For more information, see "BRM REST Services Manager Security" in BRM Security Guide.