Set Up Inbound OAuth Client Credentials Grant Authentication for API Clients with SAP-Generated Certificate
Learn how to set up inbound authentication for API clients calling the Cloud Integration OData API. The Cloud Integration OData API provides access to various Cloud Integration resources such as message processing logs, integration content, log files, etc.
You will learn
- The basics of OAuth authentication for Cloud Integration
- How to configure the authentication workflow with a client certificate provided by SAP
Prerequisites
- You have created a trial account on SAP Business Technology Platform: Get a Free Trial Account on SAP BTP
- You have enabled Cloud Integration, capability of SAP Integration Suite, as described in Set Up Integration Suite Trial.
To authenticate an API client to call the Cloud Integration API, various authentication options are supported. For more information, see OAuth with Client Credentials Grant for API Clients and OData API.
This tutorial exemplifies a 2-step authentication process. In general, you have to configure both requests separately for your API client.
- In a first call, the API client retrieves an access token from the SAP Business Technology Platform (SAP BTP) token server. For this step, the API client provides a client certificate.
- In a second call, the API client accesses to the Cloud Integration API resource and is authenticated based on the access token.