Hi Latvamik,

For starters you can refer to this blog post, "How to setup OAuth2 authentication for RESTMessageV2 integrations". Also refer to this thread for your reference.

By default, the OAuth plugin is active on new and upgraded instances. If it is not active on your instance, you can activate it.

Set up OAuth by registering applications to OAuth, enable the OAuth system property, and generate token requests.

Configure OAuth 2.0 settings for these scenarios:

• OAuth external client scenario: Your instance provides an endpoint for third-party clients to pull data from the instance.
• OAuth provider scenario: Your instance pulls data from a third-party provider.

In general, an instance uses the following workflow to authorize access to an OAuth-protected resource.

• The client requests authorization from the resource owner through the authorization server and the resource owner's login credentials or an authorization code.
• The authorization server provides the client with an authorization grant on behalf of the resource owner.
• The client requests an access token from the authorization server using the authorization grant. If valid, the authorization server grants the client an access token and refresh token.
• The client uses the access token to request the protected resource.
• The resource server validates the access token.
• If valid, the resource server grants the client access to the protected resource.