cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SmartEdit with 3rd party Oauth2 services

Former Member

on ‎2019 Jul 10 6:17 PM

522

Hi all,

We would like to ask a question about having SmartEdit integrating with a 3rd party Oauth2 service for single sign-on, instead of using Oauth2 services provided by Commerce platform.

Use of 3rd party Oauth2 services

As per our understanding, SmartEdit already implemented authentication with Oauth2 provided by Commerce platform (as per documented in https://help.sap.com/viewer/86dd1373053a4c2da8f9885cc9fbe55d/6.6.0.0/en-US/498dc887ff2741ceae5fdeb17...)

For example we can see SmartEdit is requesting the following API for retrieving token by providing client ID with user and password captured on SmartEdit login form:

https://[URL to Commerce]/authorizationserver/oauth/token

If it is the correct understanding is it possible if we replace this with a 3rd party (external) Oauth2 endpoint? Or SmartEdit can only work with Oauth services provided by Commerce platform together with access token generated by Commerce platform?

If we can make use of 3rd party Oauth2 services what kinds of configuration change we need to make?

Authorisation

Another question is about authorisation. Given we would like to use a 3rd party Oauth service to authenticate we also want to make use of it for authorisation. The idea is to return user group associated with a user account as part of access token. Is it possible if we can modify authentication logic in Commerce platform such as to update user groups assigned to a user after successful authentication based on user groups provided in access token from 3rd party Oauth service? If yes, how can we perform this customisation?

From the following documentation (https://help.sap.com/viewer/86dd1373053a4c2da8f9885cc9fbe55d/6.6.0.0/en-US/498dc887ff2741ceae5fdeb17...) it is described that wsAuthenticationProvider from thewebservicescommon extension handles authentication. Is it where we should customise the logic to manage user groups for a user upon successful login?

The wsAuthenticationProvider authentication manager provided by thewebservicescommon extension of the SAP Commerce platfrom handles authentication within SmartEdit.

See if you can help.

Thanks so much.

Sean

Know the answer?

Help others by sharing your knowledge.

Answer

Need more details?

Request clarification before answering.

Show replies
Show replies
View Entire Topic
former_member506
Participant
‎2022 Dec 01 7:43 AM
0 Kudos

Hello,

I also have similar use case to replace existing default Hybris authorization server with external OAuth2 IDP/ such common authorization server for multiple systems.

Could you find anything on it ?
Please let me know.

Thanks!

Show replies
Show replies
Ask a Question