Configuring metadata for a native OAuth provider
Use Authentication URL or External URL parameters to request user-defined content from a remote server and include it in the access token or in the response payload that contains the access token.
About this task
Configure an Authentication URL or an External URL from which custom metadata is collected for inclusion in the token. The metadata is either stored inside the access token or it is sent along with the access token to the client application. For more information about how the metadata is collected, see OAuth external URL and authentication URL.
Following are examples of metadata that can be included with the access token:
- Metadata about the authenticated resource owner
- Grant type that was used to obtain the token
- A confirmation code to be provided to the client application
One of the following roles is required to configure metadata collection for a native OAuth Provider:
- Administrator
- Owner
- Topology Administrator
- Custom role with the Settings:Manage permissions
You can select the metadata settings page for a native OAuth provider immediately on completion of the creation operation detailed in Configuring a native OAuth provider, or you can update the metadata settings for an existing native OAuth provider. If you want to update the metadata settings for an existing native OAuth provider, complete the following steps before following the procedure described in this topic:
Procedure
Perform the following steps to configure metadata collection: