Showing results for 
Search instead for 
Did you mean: 

Verify OAuth with JWT in API call on SCP

Hi community


We have a microservice architecture based on the Azure platform and as part of that we are trying to consume services from our ECC (702 SP18). The plan is to go from OData Provisioning via Cloud Connector directly.

Refer to the Azure documentation for more detail on the authentication flow. In our case we need the SAP web service to act as the Web API B in the diagram in this link. We need to somehow do the validate the JWT sent in the call by the other Web API.


How can we configure an API endpoint (OData/REST service) that could validate and accept an OAuth request with a JWT Bearer Token in API Management (or any other way in SCP)?

I have been scouring the documentation and SCN but cannot find any detail on this specifically.

In the SAP API Management documentation it says that the operation to Verify Access Token is configurable, bu there is not detail on how to configure this further (i.e. how do you configure the decryption key used to decrypt the tokens signature for verification. So I would like to check if anyone has used this approach before.

If you have any experience or idea how to achieve this please let me know.

Kind regards,


0 Kudos

Hi Ben,

I have similar query. Can you please help me if you have any suggestions on below.

this is single sign on using JWT token.

1) User Login into SalesForce ( user name : USER123 ).

Username will be authenticated by OKTA and OKTA sends back one JWT token to SalesForce.

2 ) We have to connect to SAP using JWT token which comes from Salesforce. ( Same user exists in SAP : USER123 ).

There is a middle layer we are using i.e, L7 layer ( it simply passes JWT token to SAP ).

3) Current ECC environment is On-Premise but NOT CLOUD.

4) i read many documents related to OAUTH, OKTA but could not find proper solution.

5) I think SAP HCP can accept JWT token to connect SAP .

6) i checked about SAML response , SAML bearer assertions but i could not able to understand what exactly i have to do.

Please see attached flow diagram below.

Ultimate goal is connect to SAP from salesforce using JWT token on on-premise.


email id :



Accepted Solutions (0)

Answers (1)

Answers (1)

Product and Topic Expert
Product and Topic Expert
0 Kudos

Hi Ben,

Please check this blog. It deals with Facebook login, but I believe it would work the same way for Azure services.