OAuth 2.0 Password Grant

Client Id

A unique identifier assigned to the client application by the authorization server.

Client Secret

A confidential string used by the client to authenticate itself to the authorization server.

Username

This field is the username of a user for the external system that you want to integrate with.

Password

This field is the password of a user of the external system that you want to integrate with.

Grant Type

This is "password' by default. Certain applications may require you to specify the grant type in a non-standard way, or may support a variation of the Password Grant type. This can be replaced according to the requirements of the third-party application.

Headers

This field can be used when extra headers must be specified for authorization.

Access Token URL

The URL where the client exchanges the authorization code for an access token.

Refresh Token URL

The Refresh Token URL is the endpoint in the OAuth 2.0 authorization server where a client can request a new access token using a refresh token. This URL is used when the current access token expires to obtain a new one without requiring the user to re-authenticate.

Use Raw Token

Enabling this removes the Bearer prefix from the Authorization header.

Body Parameters

Use this field to include extra form parameters for authentication, which will be added as the request body. This field accepts values using the JSON format {"key":"value"}.