Starting with version 8.01, the REST API in OTbase Inventory also supports OAuth2 authentication. For an overview of this authentication method, please check this Microsoft documentation: https://learn.microsoft.com/en-us/azure/active-directory/develop/v2-protocols.
Head to the settings page in the maintenance area. Here you can set the REST OAuth2 settings.
Keys URL (JWKS URI)
The JSON Web Key Set (JWKS) is a set of keys containing the public keys used to verify any JSON Web Token (JWT) issued by the Authorization Server.
For Azure AD B2C:
Authorization scope must be "[CLIENT_ID]/[SCOPE]" or access token signature will be invalid (SCOPE can be ".default")
Get the Metadata URI from the App/Overview/Endpoints/OpenID Connect-Metadata Document. Example: https://login.microsoftonline.com/[tenant GUID]/v2.0/.well-known/openid-configuration. Calling this URI will give you a JSON document containing a "jwks_uri" field. The assigned URI is the one to use. Example: https://login.microsoftonline.com/[tenant GUID]/discovery/v2.0/keys. To verify this URI: Calling this URI will give you a JSON document containing a "keys" array.
Field name (User field name)
Field name in the JSON Web Token (JWT) payload to be used to identify the user.
For Azure AD B2C:
Use "unique_name" or "upn" for example
Comments
0 comments
Please sign in to leave a comment.