OAuth 2.0 Authentication - Databridge Pro - 25.2 - Reference - Hexagon

OAuth 2.0 client credentials must be obtained from the API Client Auth screen in Databridge Pro. The following credentials are provided when an API Client record is created:

• Client id

• Client secret

• Scope

• Authorization URL (token generation).

See Managing API Client Authorization in Databridge Pro Help for details.

These client credentials are used to obtain OAuth 2.0 access tokens that authorize requests to the API service noted within the scope.

Get an API token

To get an OAuth 2.0 token:

1. Make a POST request to the Authorization URL (token) endpoint.

2. Include the following parameters:

   1. grant_type=client credentials

   2. client_id=YOUR_CLIENT_ID

   3. client_secret=YOUR_CLIENT_SECRET

   4. scope=SCOPE_FROM_FILE

3. Include the following header:

   1. Content-Type=application/x-ww-form-urlencoded

4. After making the call, the server will respond with a json object containing:

   1. access token

   2. token type

   3. expiration timeframe (seconds)

Using the API token

Once an access token is obtained:

1. Include it in the Authorization header of your API request.

2. The token is only authorized to access the API service indicated within the scope.

If the token is being used within the StandardOauth2AccessTokenProvider service in Databridge Pro, the Client Authentication Strategy must be set to BASIC_AUTHENTICATION.

Token Expiration

Access tokens typically expire after a set period. Applications should request new tokens before expiration to maintain uninterrupted access.