Creating a custom authentication service for OAuth 2.0 ROPC authentication for custom mobile apps
When you configure user authentication with OAuth 2.0 tokens, using the Resource Owner
Password Credentials (ROPC) authentication flow, you must create a custom authentication service
to enable authentication. The Pega Platform installation includes predefined
authentication services, such as WebLDAP1
, that you can modify to test
authentication.
- Create an authentication service.
- In the Type list, select Custom.
- In the Name field, enter the name of an authentication service, for example WebLDAP_OAuth2.
- In the Short description field, enter your name for the servlet that is exposed by the service, for example WebLDAP_OAuth2/prweb/PRWebLDAP_OAuth2.
- Click Create and open.
- On the Service tab, in the Authentication activity and the Timeout activity fields, enter pyPerformDelegatedAuthentication.
- On the Custom tab, in the Other area, in the Authentication fail stream field, enter pyAuthenticationFailedStream.
- In the Source of operator credentials field, select Use externally stored credentials.
- Click Save.