Documentation Center

Authenticating a user through OpenAPI using OpenIdConnect client credentials flow

The authentication of client credentials through OpenAPI using OpenIdConnect, connecting through Access Management with a configured service account, providing a client ID and client secret, follows a certain code flow. This topic describes that code flow.

Before you begin

To authenticate client credentials, you must first have obtained a client ID and client secret by managing a service account in Access Management.

Procedure

  1. Have your custom application request the discovery document from Access Management.
    Access Management returns the discovery document.
  2. Have your custom application extract the Token Endpoint from the discovery document.
  3. Have your custom application send a request to the Token Endpoint, providing a client ID and client secret.
    The Token Endpoint sends back an access token.
  4. Have your custom application attach the access token as a bearer token to your OpenAPI requests.