☁️
Flow IFS Cloud Development Guidelines
  • Flow IFS Cloud Development Guidelines
  • 👶Getting started
    • OData Basics
    • IFS Cloud
    • Terminology
    • Useful Applications
    • IFS documentation
      • IFS API Explorer
      • Entity details
    • Setting up the OData connector
      • Configure connection between Flow Server and IFS Cloud
      • Selecting which configurations are visible in Flow Server
  • 👩‍💻Flow Development with OData
    • Architecture
    • Flow development and distribution strategy
    • Implementation
      • Operations in OData machine steps
      • Missing operations
      • Translations
      • Iteration
      • Join data sets
      • Misc Tips and trix
      • Document / Media Library Management
      • Response status handling
        • Errors from IFS
      • Operation specific notes
        • Set input parameters using flow script
        • Update
        • 🛠️WIP - Create
        • Read
    • Configuration
      • Authentication models
        • Setup Client credential flow
        • 🛠️Setup Password credentials flow
        • 🛠️Setup Authorization code flow
        • 🛠️Setup OpenID flow
        • Obtaining Authentication related URLs from IFS Cloud
      • Projection administration
        • Administrating new projections
        • Administrating updated projections
      • Configuring projections in IFS
        • Custom Entities
        • Custom Projections
        • 🛠️WIP - Query Designer
        • Quick Reports
    • Trigger Flows from IFS Cloud
      • Trigger User Flows via External Navigation Links
      • Trigger Machine Flows via BPA using commands
      • 🛠️Trigger Flow via Event Action
    • Debugging and Testing
      • Aurena debugging
        • Inspect in web browser
        • IFS debug console
      • OData Connector Log
  • 🪄Advanced
    • Custom Request
    • C# usage in the OData connector
      • Different methods
      • Building request
      • 🛠️WIP - Code examples
Powered by GitBook
On this page
  • Setup overview in OData connector configuration
  • Setup
  • Flow Server User Setup

Was this helpful?

  1. Flow Development with OData
  2. Configuration
  3. Authentication models

Setup Client credential flow

PreviousAuthentication modelsNextSetup Password credentials flow

Last updated 1 year ago

Was this helpful?

Setup overview in OData connector configuration

See Setup for obtaining required in information before configuring authentication.

Design time configuration is recommended to configure using with Client Credential model.

Prepare IFS setup first and collect all information ready before configuring Client Credentials. Also when configuring, add fields in order from top to bottom.

Setup

Access Token URL

Get Access token URL value from IFS Cloud.

Client ID and Client Secret

Create one IFS service user and link it to new IAM Client.

Create IFS service user

Create IFS user type of Service User.

One cannot log into Aurena with IFS user type of service user.

It could be good idea to have novaura/nc and flow in the IFS user name?

IFS Service user permissions

Minimum privileges in that service user needs are

  • CONNECT system privilege

  • ProjectionExplorer projection

This enables the OData Connector to get projection list from IFS.

If Client Credentials authentication is used in Runtime setup (debugging in Studio or for integrations for example), service user must be granted

  • all projections required by flows

  • company and site setup to enable data visibility etc.

Create IFS IAM Client

Create IAM client like in example and link it to IFS service user.

Name IAM client so that it can be identified as being used by Flow. Also adding postfix describing authentication type would be a good idea.

Example name: NC_Flow_ClientCredentials, Novacura_ClientCredentials

Use same name for same type of IAM client in all customers IFS Cloud instances.

From saved IAM client, copy

  • Client ID (character size matters, NC_FlowClientCred is not the same as NC_FLOWCLIENTCRED) to OData connectors Client ID and

  • generated Secret to OData connectors Client Secret.

Scope(s)

Set default value of openid microprofile-jwt to OData connectors Scope(s).

Flow Server User Setup

Flow User setup has no link to IFS user so there are no special requirements for flow user setup.

👩‍💻
Obtaining Authentication related URLs from IFS Cloud
Example Client Credential setup