search
githubEdit

OAuth 2.0 Authorization Code Grant

Authenticate using the OAuth 2.0 Authorization Code Grant

hashtag
Overview

OAuth 2.0 Authorization Code Grantarrow-up-right is an open standard for access delegation. It enables applications to grant access to information without needing to create or share additional passwords.

hashtag
Fields

The Aisera OAuth 2.0 Authorization Code Grant option type includes the following fields:

Field
Description

Authorization URL

The URL where users authorize access to their account or data.

Client Id

A unique identifier assigned to the client application by the authorization server.

Client Secret

A confidential string used by the client to authenticate itself to the authorization server.

Access Token URL

The URL where the client exchanges the authorization code for an access token.

Client Secret Basic

In the authentication request, if enabled, the Client Secret will be in the header. Otherwise, it will be in the request body. Whether this is enabled is determined by the third-party application you are connecting to the Aisera Platform.

PKCE

Enables authentication using Proof Key for Code Exchange. Once this setting is enabled, no further configuration is needed.

Scope

A space separated list of the requested scopes for the application your are integrating with.

hashtag
Configuring the external platform

When configuring the external system for OAuth 2.0 integration with the Aisera platform, the following redirect URLs may need to be whitelisted.

hashtag
Service Account Authorization

For service account authorization for use with the data sources and workflows whitelist:

https://<cluster_id>.login.aisera.<top_level_domain>/?id=aisera.oauth.oauthCommand

Contact your Aisera support team for the Cluster Id.

hashtag
User Authorization

For user authorization for use with workflows whitelist:

https://<vanity_url>.chatbot.aisera.<top_level_domain>/oauth2/authorize

PreviousBasic AuthenticationNextOAuth 2.0 Password Grant

Last updated

Was this helpful?