I'm new in Creatio. I'm testing the integrations capabilities and I feel uncomfortable with Oauth. I want my user to log into the web service every time they acess my Creatio app. I want the protocol to retrieve their permissions/scopes in order to ensure they can access the data. In Creatio, all is performed on behalf of the user specified in the "Shared User" field. I don't want my users to use those credentials. Is there a way to bypass this ?
OAuth (Open Authorization) is a trusted, widely used standard protocol for authentication and authorization. It allows users to grant access to their resources on one website or application to a third-party application without disclosing their credentials, such as username and password. This approach enhances security and reduces the risk of credential theft.
According to the basic logic of OAuth, the connection is created only once and only for one user. You can create another connection for the new user, however, there is no alternative way to bypass the logic as you described.
Thank you for your answer. In that case, I am very curious about how you refresh the token given by the third party application. Essentially, what happens when the token expires ?
I am trying to setup the OAUTH2.0 on my trail cloud instance. Would like to know what should be the identity service URL which we need to specify on Postman to generate the access token?
While setting up as per the article, there is one required field in the OAuth Setting fields which is "Auth code request URL".
But the API endpoints for which, I have to make use of Web Service OAuth Authentication, is not having settings for Auth code request URL required parameter.
Please guide and help me on this point that how I can set up OAuth Authentication in web service without Auth code request URL.
