OAuth 2.0 Client Registration data instancesCompleting the Client Information tab

You are here: Reference > Data classes > OAuth 2.0 Client Registration data instances > OAuth 2.0 Client Registration data instances - Completing the Client Information tab

OAuth 2.0 Client Registration data instances Completing the Client Information tab
New About Client Information History

Complete the Client Information tab to store the data of an external client that wants to connect to your Pega 7 Platform application by using the client credentials grant type in OAuth 2.0.

Client Credentials

This section contains the credentials that are generated when you register the client.

Field	Description
Client ID	Unique ID that is assigned to the client.
Client secret	Password that is assigned to the client.
Access token endpoint	The request URL that you can access to receive an access token for the client as a response after authentication. Your REST service authenticates the client by using the client ID and client secret.
Token revocation endpoint	The request URL that you can access and after authentication, revoke an already issued access token for the client. When the token is revoked, the system returns an HTTP status code 200 as a response, and all subsequent requests that the client sends by using the token result in an error.

Click View and Download to see the client secret, and then click Download Credentials in the Copy Client Secret dialog box to save the client credentials in a .txt file.

Click Regenerate Client Secret to generate a fresh password for the client. When you click this button, the system revokes any active access token that was issued for the client.

Click Revoke Access Token to revoke all the access tokens for the client.

Select or create an operator to be used by this OAuth 2.0 client.

Field

Description

Operator

Required. Select or create an operator that your application will use to authorize the OAuth 2.0 client.

Caution: This operator must not represent a human user who can log into the system. The operator must be reserved for an OAuth 2.0 client that wants to access resources in the Pega 7 Platform. You can modify the scope of the operator's access group to allow the client to access selective resources in the Pega 7 Platform.

Advanced options

Field	Description
Token lifetime in seconds	Enter the time period in seconds for which an access token will be valid for the client. This value must be a positive integer. The default value is 3600 seconds.

Open topic with navigation