OAuth2 Authentication
OAuth2 is a standard protocol for authorization that provides secure API access.
How It Works
OAuth2 authentication works as follows:
- You configure the OAuth2 settings for your connector
- The system obtains an access token from the authorization server
- This token is included in the
Authorizationheader of each request - The token is automatically refreshed when it expires
Configuration
To configure an HTTP connector with OAuth2 authentication:
- Select "OAuth2" from the Authentication dropdown
- Enter the following information:
- Client ID
- Client Secret
- Token URL
- Scope (optional)
- The system will handle token acquisition and renewal
OAuth2 Flow
The connector uses the OAuth2 Client Credentials flow:
- The system sends a request to the Token URL with the Client ID and Secret
- The authorization server returns an access token
- The system includes this token in the
Authorizationheader of API requests - When the token expires, the system automatically requests a new one
Example
When a request is sent, the following header is included:
Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...
Security Considerations
When using OAuth2 authentication:
- Keep your Client ID and Secret secure
- Use HTTPS for all OAuth2 endpoints
- Request only the scopes necessary for your integration
- Implement proper token validation on your receiving end
Testing the Connection
To test an HTTP connector with OAuth2 authentication:
- Configure the connector with the appropriate OAuth2 settings
- Click "Test Connection"
- The system will attempt to obtain a token and make a test request
- Verify that the test succeeds
- Check the response for any authentication errors