dzebm Member since 2011 11 posts
Posted: 2 years ago
Last activity: 2 years ago

OAuth 2 - Service to service calls using delegated user identity

Hi there,
I have a requirement to setup SSO with either OpenID or SAML2 with Azure Active Directory.
Reusing this access token we need to get authorization to downstream REST connector calls later in the case.
The idea is to propagate the delegated user identity and permissions through the request chain.
For the middle-tier service to make authenticated requests to the downstream services, it needs to secure an access token from Azure Active Directory (Azure AD), "On-Behalf-Of" the user.
Here’s a link explaining Microsoft’s support for the on-behalf-of OAuth2 flow:…
Is it something achievable using OAuth 2 authentication profile in Pega 8.1 for our REST connectors ?
If yes, are there any documentation or guides on how to set it up ?
Best regards and thank you in advance.

Moderation Team has archived post
Share this page LinkedIn