Getting Started with OAuth 2.0 and OpenID Connect Authorization

OAuth 2.0 and OpenID Connect (OIDC) are the protocols that can be used for authentication and authorization in MYOB Acumatica.

OAuth 2.0 enables third-party applications to obtain limited access to MYOB Acumatica web services on behalf of a resource owner. It can be used for enabling secure access to the web services without sharing user credentials. OAuth 2.0 uses access tokens to grant access to resources.

OIDC extends OAuth 2.0 by adding an identity layer on top of the authorization process. It allows client applications to verify the identity of users based on the authentication performed by an authorization server, as well as to obtain basic profile information about the authenticated user. OIDC introduces the concept of an ID token, which is a JSON Web Token (JWT) that contains identity information about the user.

In this chapter, you can find overview information about support of OAuth 2.0 and OIDC in MYOB Acumatica and learn about general steps you need to perform to implement OAuth 2.0 or OIDC in your application. The chapter also contains details about the implementation of the common steps for each authorization flow.