Oracle has introduced an OAuth authentication mechanism to access ERP application using ERP adapter in OIC.
This will solve the following security issues.
- Can maintain user credentials in IDCS.
- Wont require to reset the passwords during P2T refresh.
- Better security compared to basic authentication.
- Authentication will work even password will get expired in IDCS or Fusion.
- Create an ERP Enterprise resource application.
- Create a confidential application
- Select Configure as a client application
- Select appropriate Grant Types
- Provide callback URL
- https://<OIC_HOST_NAME>/icsapis/agent/oauth/callback
- Select Client Type as Trusted if required and import SaaS certificate
- Add Scope
- Select ERP Enterprise application which we created earlier.
- Select the scope
- Save changes
- Activate the application
- Collect Client Id and Secret.
- OIC Configurations:
- Login into OIC using admin or developer access.
- Make sure this user has got an access to Oracle Fusion as well.
- Create ERP Adapter with Invoke Operation.
- Provide SaaS URL
- Select Authentication type as OAuth.
- Provide Client Id and Secret which we got above.
- Provide Authorization and Token URL.
- https://idcs-<Id>.identity.oraclecloud.com/oauth2/v1/authorize
- https://idcs-<Id>.identity.oraclecloud.com/oauth2/v1/token
- Provide Scope Value (Get it from IDCS client application.)
- Add offline_access to the scope.
- https://<SaaS_Host_Name>.fa.ocs.oraclecloud.com/ offline_access
- Select Provide Consent.
- Provide IDCS user credentials.
- Save and Test the connection.
Informative and helpful Article. Really good work. Appreciate it. You might be looking for Custom Software Solutions
ReplyDelete