☁️
Flow IFS Cloud Development Guidelines
  • Flow IFS Cloud Development Guidelines
  • 👶Getting started
    • OData Basics
    • IFS Cloud
    • Terminology
    • Useful Applications
    • IFS documentation
      • IFS API Explorer
      • Entity details
    • Setting up the OData connector
      • Configure connection between Flow Server and IFS Cloud
      • Selecting which configurations are visible in Flow Server
  • 👩‍💻Flow Development with OData
    • Architecture
    • Flow development and distribution strategy
    • Implementation
      • Operations in OData machine steps
      • Missing operations
      • Translations
      • Iteration
      • Join data sets
      • Misc Tips and trix
      • Document / Media Library Management
      • Response status handling
        • Errors from IFS
      • Operation specific notes
        • Set input parameters using flow script
        • Update
        • 🛠️WIP - Create
        • Read
    • Configuration
      • Authentication models
        • Setup Client credential flow
        • 🛠️Setup Password credentials flow
        • 🛠️Setup Authorization code flow
        • 🛠️Setup OpenID flow
        • Obtaining Authentication related URLs from IFS Cloud
      • Projection administration
        • Administrating new projections
        • Administrating updated projections
      • Configuring projections in IFS
        • Custom Entities
        • Custom Projections
        • 🛠️WIP - Query Designer
        • Quick Reports
    • Trigger Flows from IFS Cloud
      • Trigger User Flows via External Navigation Links
      • Trigger Machine Flows via BPA using commands
      • 🛠️Trigger Flow via Event Action
    • Debugging and Testing
      • Aurena debugging
        • Inspect in web browser
        • IFS debug console
      • OData Connector Log
  • 🪄Advanced
    • Custom Request
    • C# usage in the OData connector
      • Different methods
      • Building request
      • 🛠️WIP - Code examples
Powered by GitBook
On this page
  • Different authentication models
  • Authentication flow type overview
  • Client Credential flow
  • Password Credentials flow
  • Basic authentication
  • Authorization Code Flow
  • OpenId flow
  • Summary of authentication flows

Was this helpful?

  1. Flow Development with OData
  2. Configuration

Authentication models

This chapter describes different Authentication options between oData Flows and IFS Cloud.

PreviousConfigurationNextSetup Client credential flow

Last updated 6 months ago

Was this helpful?

Authentication is setup on configuration level in the oData connector admin interface.

Different authentication models

Each OData connector configuration has three authentication configuration categories, Design time and Runtime are mandatory.

Design time is used:

  • During workflow design in Flow Studio, setting up machine steps and exploring projections

Runtime is used:

  • During execution of user flows by any of the clients (mobile/web)

  • Executing machine workflows

  • Running flows in Testbench

Each authentication configuration should be tailored to meet specific customer requirements and flow types. It is common to have multiple oData connector configurations within a solution for the different scenarios.

Authentication flow type overview

Client Credential flow

Password Credentials flow

Basic authentication

Basic Authentication is not recommended for use with IFS Cloud as it is considered insecure and is disabled by default. But it's still supported by the oData connector.

Authorization Code Flow

OpenId flow

Summary of authentication flows

Below is a summary of main features of each authentication flow to consider when configuring OData configurations based on customer requirements and flow types developed.

Flow documentation about authentication

Authentication type
Applicable Flow app types
Flow clients
Available for OData auth. type
Options for flow user to authenticate to flow server
User authentication IDP
Flow User Authenticated in IFS
Remarks
Authentication type
Applicable Flow app types
Flow clients
Available for OData auth. type
Options for flow user to authenticate to flow server
User authentication IDP
Flow User Authenticated in IFS
Remarks
Authentication type
Applicable Flow app types
Flow clients
Available for OData auth. type
Options for flow user to authenticate to flow server
User authentication IDP
Flow User Authenticated in IFS
Remarks
Authentication type
Applicable Flow app types
Flow clients
Available for OData auth. type
Options for flow user to authenticate to flow server
User authentication IDP
Flow User Authenticated in IFS
Remarks
👩‍💻

Client Credentials

User and machine workflows

All clients

Design/Runtime

Pw in Flow Server/Ext. IDP in Flow Server OpenId configuration

Only IFS IDP

One IFS Service User linked to IFS IAM Client

No possibility to log into Aurena with service user

Password Credentials

User and machine workflows

All clients

Design/Runtime

FPw in Flow Server/Ext. IDP in Flow Server OpenId configuration

Only IFS IDP

Flow user

Flow user, connector level setup could contain users IFS user Id

Authorization Code

User workflows

Only mobile clients

Runtime

Pw in Flow Server/Ext. IDP in Flow Server OpenId configuration

IFS/External IDP

Flow user

Usable when flow is connecting to different systems of which all require their own authentication, IFS being one of them

OpenId

User workflows

All clients

Runtime

IFS IDP setup in Flow Server OpenId configuration

IFS/External IDP

Flow user

Web client and Portal2 requires separate API Manager to be purchased/configured by customer

Setup Client credential flow
🛠️Setup Password credentials flow
🛠️Setup Authorization code flow
🛠️Setup OpenID flow
LogoConfiguring IFS OData connectorFlow Help
LogoAuthentication in IFS CloudFlow Help
Auth tab in the oData connector admins page