Posted: 13 Sep 2016 10:57 EDT Last activity: 2 Nov 2016 15:33 EDT
Can Pega acts as OAuth server
I wanted to connect to Pega from external applications like salesforce,Amazon Alexa using OAuth 2.0 framework.
can Pega 7.X supports OAuth 2.0 server framework?
I have looked at the "OAuth 2.0 Provider" data instance but that is used for connecting to external systems(facebook,salesforce,twitter,box) using OAuth 2.0 framework and pega acts as OAuth 2.0 consumer not Provider/server.
***Updated by Moderator: Vidyaranjan| Included Categories***
Yes, Pega can act as an OAuth provider. You can create an OAuth 2.0 Client Registration data instance as part of the process to allow external applications such as Twitter, Facebook, and Google to securely access your REST services, without storing or disclosing individual users' names and passwords. You can get more information from the link below:
I am referring the "OAuth 2.0 Authorization framwork" with Auth code not just with access token.
Pega should have an Authorization URL and access token URL(i see this URL). So external system invokes the Authorization URL so they will be redirected to pega login popup once they enter the login details the external system stores the Auth Code sent by Pega and it uses the Auth Code to get the Access Token to call the REST services.
The Authorization framework am referring in the below link: