Table of Contents

Authorize applications with the OAuth 2.0 authorization code grant type

Pega Platform™ now supports the OAuth 2.0 authorization code grant type, which allows Pega Platform to act as an OAuth 2.0 access token provider for native applications on mobile and other devices. By using the authorization code grant type for mobile clients, you no longer need to implement a variety of standards for various authentication providers.

The authorization code grant type also supports the Proof Key for Code Exchange standard (PKCE) for securing public clients.

The following figure shows an OAuth 2.0 client registration rule with an authorization code grant type.

Thumbnail

OAuth 2.0 client registration rule with authorization code grant type

For more information, see Creating and configuring an OAuth 2.0 client registration.

Suggest Edit

0% found this useful

Have a question? Get answers now.

Visit the Pega Support Community to ask questions, engage in discussions, and help others.