Create OAuth connection
- Última actualización2024/10/03
Create OAuth connection
A Control Room administrator can create OAuth connections for users to use these connections in the authentication action for packages without having to enter any authentication details.
Note: The Salesforce mark and logo, the Microsoft SharePoint mark and logo, the Apigee mark and logo, ServiceNow mark and logo, and the Genesys mark and logo are trademarks or registered trademarks of Salesforce, Inc., Microsoft Corp., Google LLC, ServiceNow, Inc., and Genesys, respectively, and are used for identification purposes only.
Antes de empezar
- Ensure that you are using a user role that has the Manage connections permission enabled for the OAuth Connections feature. See Características de permisos para un rol.
- Ensure that you have configured an enterprise application and made a note of the Client ID,
Client secret, Authorization URL, Token URL, and scope. See Configurar aplicaciones empresarialesNota: Consider the above prerequisites to avoid a connection error.
Tabla 1. Common provider informationThe following table provides the format of the Authorization URL, Token URL, and scope for the supported enterprise applications: Enterprise applications Authorization URL Token URL Scope Apigee https://accounts.google.com/o/oauth2/auth?prompt=consent&access_type=offline https://accounts.google.com/o/oauth2/token https://www.googleapis.com/auth/cloud-platform Genesys https://login.<yourinstance>.pure.cloud/oauth/authorize https://login.<yourinstance>.pure.cloud/oauth/token Not required Microsoft Entra https://login.microsoftonline.com/<tenant>/oauth2/v2.0/authorize https://login.microsoftonline.com/<tenant>/oauth2/v2.0/token Authorization code Flow: offline_access, openid ORClient credential flow: https://graph.microsoft.com/.defaultSalesforce https://<yourinstance>.salesforce.com/services/oauth2/authorize https://<yourinstance>.salesforce.com/services/oauth2/token api,refresh_token,offline_access ServiceNow https://<yourinstance>.service-now.com/oauth_auth.do https://<yourinstance>.service-now.com/oauth_token.do Not required SharePoint https://login.microsoftonline.com/<tenant-id>/oauth2/v2.0/authorize https://login.microsoftonline.com/<tenant-id>/oauth2/v2.0/token https://<domain-name>/AllSites.Manage, offline_access, openid Nota: The OpenID scope is required only when your apps require the sub claim in the ID token to identify the end-user. Otherwise, this scope is optional.Google Workspace (Calendar, Drive, Sheets and Gmail) https://accounts.google.com/o/oauth2/auth?prompt=consent&access_type=offline https://oauth2.googleapis.com/token - Google Sheets: https://www.googleapis.com/auth/drive, https://www.googleapis.com/auth/spreadsheets
- Google Drive: https://www.googleapis.com/auth/drive
- Google Calendar: https://www.googleapis.com/auth/calendar
- Gmail :
https://developers.google.com/identity/protocols/oauth2/scopes#gmail
- https://mail.google.com/,https://www.googleapis.com/auth/gmail.readonly,https://www.googleapis.com/auth/gmail.send
Nota: We recommend that you use refresh tokens that are configured
for a longer expiry duration. See Utilice la aplicación AuthConfig para habilitar los servicios OAuth2.
Procedimiento
The following video shows how to create an OAuth connection: