OAuth 2.0 authorization types overview
OAuth 2.0 is an open standard that enables an external app or web service to access resources hosted by other web apps. Learn more: official vendor documentation (OAuth 2.0).
OAuth 2.0 is one of the supported authorization types in Creatio. This technology does not pass Creatio logins and passwords to external apps. Identity Service implements OAuth 2.0 in Creatio and authorizes external apps and web services you integrate with Creatio using OAuth 2.0. OAuth 2.0 also lets you restrict Creatio permissions for the integrated apps. For example, you can use OAuth 2.0 authorization to integrate webhook service, Power BI Connector, Clio, Creatio.ai add-in for Outlook with Creatio.
Creatio supports the following OAuth 2.0 authorization types:
- client credentials grant (server-to-server)
- authorization code grant (on behalf of a user)
Client credentials grant
The client credentials grant builds server-to-server OAuth integration and provides access to Creatio data and API for integrated apps outside the context of a specific user. Learn more: official vendor documentation (OAuth 2.0).
The client credentials grant uses client credentials of one technical user only to access Creatio data from integrated apps. Access for all users of an integrated app to Creatio data is limited by the access permissions of the technical user created for this integration. Instructions: Set up client credentials grant.
Authorization code grant
The authorization code grant builds OAuth integration on behalf of a specific user and provides access to Creatio data and API directly for integrated apps inside the user context without granting their credentials for authentication. Learn more: official vendor documentation (OAuth 2.0).
Unlike client credentials grant, authorization code grant lets integrated app access Creatio data based on permissions of Creatio user who grants access to Creatio for integrated app. Instructions: Set up authorization code grant.
See also
Connect the Identity Service to Creatio
Set up client credentials grant
Set up authorization code grant
OAuth 2.0 authorization (developer documentation)
E-learning courses
Tech Hour - Integrate like a boss with Creatio, part 2 (Odata)