Hi All,
We are working on a project to implement inbound scripted REST API in service now based on OAuth authentication.OOB service now works as both authorization server to give token and as well as resource server to consume the token for authentication and share the response for an API call.
The difference in our implementation is our client has another tool that can work as an authorization server to generate token as it is the central gateway to authentication and with that token if external application call service now API it should be allowed by OAUTH to provide response.
Kindly let us know any possibility or solution to achieve the requirement.
Thanks in advance.
I think OIDC would help you in this scenario
below is the example of OIDC with OKTA
https://hi.service-now.com/kb_view.do?sysparm_article=KB0778342
how does it work with ServiceNow
Open ID Connect with OKTA
ServiceNow supports External OIDC Provider and required the following parameters
- Client ID
- Client Secret
- Meta URL
As shown below
We can also set up the user provision so that if the user doesn’t exist in serviceNow and trying to access the ServiceNow APIs with valid external OKTA token we can created the user at runtime and grant the access for APIs accordingly.
As shown below.
Once these configurations are done on ServiceNow side now we can use the external token to access ServiceNow APIs.
So let’s try to get the token from by performing login to OKTA using PostMan as shown below. And his the request token button as shown below
Let’s fill up the user credentials and Sign In
Now as you can see we got the tokens as shown below
Now we can use the Id_token as Authorization to access the ServiceNow APIs and ServiceNow will validate this token with okta and then grant the access accordingly.
As shown below we have successfully received the data using that token from ServiceNow.
please mark this helpful and correct if this helped you in any way.
thanks
Hammad
