Configure the identity server for client credentials

  • 16 February 2021
  • 0 replies
  • 91 views

Badge +2
 

Configure the identity server for client credentials

KB003694

PRODUCT
K2 Cloud
BASED ON
K2 Cloud

The latest version of this topic can be found in the Nintex K2 Cloud User Guide.

Contact Nintex Customer Support to onboard your environment with client credentials.

You need to provide a SHA256 hash of your Client Secret for a successful onboarding using Identity Server with Client Credentials.

Generate the secret hash from a Client Secret value in a .NET console application. The onboarding team does not need the actual secret value, only the hash of it.

Use the following steps and code example to generate the hash:

  1. Add the IdentityModel NuGet package.
  2. Add the IdentityModel library reference in the using section of the class:

Sample code to generate a hash of your Client Secret
 

using IdentityModel;
.
.
.
/* Inside a method call */
var mysecret = "my secret value I am not sharing";
var encryptedSecret = mysecret.ToSha256();
Console.WriteLine(encryptedSecret);
Console.ReadLine();

The following is optional information

  • ClientName: The name we will use to map to a FQN combined with the K2SQL label. This will be exposed in the UI user pickers under the K2SQL label
    Default value ClientCredentialsApp.
  • ClientId: The ID used in combination with the ClientSecret for authentication.
    Defaults to a generated value following the format idt.cc.hash.
  • OAuth resource name: The name of the resource linked to the client ID that will appear under Oauth resource in management. The name needs to be unique per client ID.
    Defaults to IdentityTokenClientCredentials Login.
  • Secret Expiration Date: This defaults to the current date plus 2 years.

0 replies

Be the first to reply!

Reply