1. Access REST data from an Oracle Mobile Hub application
  2. Learn About Accessing REST Data from an Oracle Mobile Hub Application

Learn About Accessing REST Data from an Oracle Mobile Hub Application

You may have a requirement to build a mobile application that can access data from an Oracle Fusion Cloud Applications. You can make secure REST API calls to an Oracle Fusion Cloud Applications application, such as Oracle Sales Automation, from a publicly-accessible mobile application built with an Oracle JET-based user interface. This is achieved by building a hybrid mobile application with the Oracle JavaScript Extension Toolkit (Oracle JET) that will communicate with an Oracle Mobile Hub backend that uses a Connector REST service to access the Oracle Fusion Cloud Applications application.

By following a set of best practices for secure API calls to an Oracle Fusion Cloud Sales Automation API by using modern Oracle JET tools and leveraging the Oracle Mobile Hub backend connector, you can enable Single Sign-On (SSO) between Oracle Mobile Hub and the Oracle Fusion Cloud Applications application. You can also enable support for client-side identity propagation security policies that implement data security with Fusion-based SaaS.

When secure access demonstrated in this solution is enabled:

  • A user can log into a Oracle Fusion Cloud Applications application and then access the Oracle Mobile Hub portal without being required to also log into the portal.
  • A user can log in to Oracle Mobile Hub and then access the Oracle Fusion Cloud Applications application's homepage without being required to also log into the homepage.
  • A REST call using OAuth as the client-side security policy in an Oracle Mobile Hub connector can propagate mobile users' identity.
  • A mobile client can log into Oracle Mobile Hub, grab an OAuth token, and make a request to Oracle Mobile Hub, whose Mobile Backend (MBE) then uses OAuth to propagate the identity to Oracle Fusion Cloud Applications.
  • An extra layer of security is added. Using a backend business layer like Oracle Mobile Hub adds this extra security, which is especially important when the third-party services are protected with an integration ID (that is, one that allows a single user to query everything). The middle tier ensures that the user only sees the data they are supposed to see.

Before proceeding with this solution, read Learn how to access data from an Oracle Mobile Hub application.

Architecture

This architecture shows a common pattern for configuring access to Fusion Applications REST data from a publicly available Oracle Sales Cloud application.

Description of access-rest-mobile-hub.png follows
Description of the illustration access-rest-mobile-hub.png

access-rest-mobile-hub-oracle.zip

In this pattern, data is securely fetched by Oracle Mobile Hub and displayed on an Oracle JET-based hybrid application on mobile device. This is illustrated here:


Description of access-fa-rest-data-paas-mobile-app.png follows
Description of the illustration access-fa-rest-data-paas-mobile-app.png

access-fa-rest-data-paas-mobile-app-oracle.zip

  1. The customer logs in from the mobile client via a remote IDP URL.
  2. The mobile client recieves the SSO token
  3. Via SSO, the mobile client then uses OAuth to log in to Oracle Mobile Hub. In subsequent Oracle Mobile Hub REST calls, the SSO token will be added to the authorization header.
  4. A REST call containing the OAuth token is made to gain access to Oracle Sales Cloud data.

About Required Services and Roles

This solution requires Oracle Mobile Hub and one or more Oracle Fusion Cloud Applications such as Oracle Sales Automation.

These are the roles needed for each service:

Service Name: Role Required to...
Oracle Cloud: Identity domain Administrator Manage mobile users, roles, and realms.
Oracle Mobile Hub: MobileEnvironment_MobileUserConfig and MobileEnvironment_MobileUserMgmt team member roles Manage mobile users, roles, and realms.
Oracle Sales Automation: Application Implementation Consultant Work in sandboxes and access REST APIs.

See Oracle Products, Solutions, and Services to get what you need.

About the Required Tasks

Providing access to Oracle Fusion Cloud Applications REST data from a public Oracle PaaS mobile application is a five-step process.

  1. Learn about the service environments and components you’ll be using to implement the solution, including the solution architecture and the solution's associated services, roles, and components.
  2. Plan your approach by doing the following:
    • Understand custom APIs and authorization strategies for Oracle Mobile Hub.
    • Determine which RESTful APIs you want to use to access standard and custom object data and integrate with external applications.
  3. Configure your environment by:
    • Creating a mobile backend in Oracle Mobile Hub.
    • Configuring a hybrid mobile application development environment.
  4. Develop solution assets by:
    • Implementing a custom API for a Façade REST service.
    • Developing an Oracle JET hybrid application for Oracle Mobile Hub.
  5. Test your solution and troubleshoot any issues that arise.