Hi All,
I’m using custom authentication to retrieve the token and use it in other operations. But the token has expiration time. How can I trigger the custom authentication if the token expires? I have also added retryableerror for the operation.
Are you referring to the OAuth 2.0 Password Grant type, which requires a username, password, client ID, and client secret?
If so, here are two approaches to consider:
- Use “No Authentication” in the Web Services Connector configuration and implement a Before Rule using BeanShell. This rule can retrieve and inject the necessary token or credentials at runtime. Ensure any sensitive values stored in the application object are properly encrypted and decrypted.
- Configure OAuth Headers directly in the Web Services Connector. Detailed steps can be found in the SailPoint Web Services Connector documentation (see page 23 of the SailPoint Web Services Connector Guide.pdf for version 8.4).
Both methods provide flexibility for handling OAuth 2.0 authentication while maintaining security and integration integrity.
Adding custom authentication as the parent endpoint for all operations and utilizing the token response in the corresponding child operations as $.response., it ensures that the authentication is always triggered first whenever any other operation is executed
How can I add it in the application xml?
For each HTTP operation, the Parent Endpoint option is accessible directly in the UI. If it’s not visible, you can add it through the debug page using <entry key="parentEndpointName"/>, with the value set to the HTTP operation name.
This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.