I am looking to create an application that will need to make API calls and I wanted to make it so that the user does not need to create and store a PAT and enter it into the application. What I want to do is to present the user with a login to ISC, capture their token, and use that to make subsequent API calls as that user. When we were first implementing ISC, the consultant we were using showed me a URL that I could use that would expose the current token, but I cannot remember how we did it.
Is this possible?
It is possible using OAuth2 Authorization Code grant flow. The doc below should hopefully be what you need.
If you are logged into ISC and want to expose the current access token in the session, go to: https://[tenant].identitynow.com/ui/session
1 Like
The authorization code grant type is what you want to use. I would not recommend using the UI session token as it is not meant for this purpose.
2 Likes
This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.