Configure OAuth2


If you want to provide access to third party application, you can configure Sitefinity to use the OAuth 2.0 protocol. Sitefinity CMS supports Authorization Code, Implicit, and Resource Owner Password Credentials flows. For machine to machine communication instead of client credentials flow you can use Access Keys. For more information, see Generate access key



To configure OAuth2.0:

  1. Navigate to Settings » Advanced » Authentication » OAuth Server.
  2. Expand it and click AuthorizedClients.
  3. Click Create new.
  4. Fill out the ClientId and Secret fields.
  5. Click Save changes.
  6. Expand the client you just created and provide a value for the RedirectUrls.
  7. Click Save changes.

NOTE: For implicit flow you need only a ClientId, but for the authorization code and resource owner password credentials flows you also need to provide a Secret.

For a sample implementation, see Request access token to call a web service with OAuth2.

Increase your Sitefinity skills by signing up for our free trainings. Get Sitefinity-certified at Progress Education Community to boost your credentials.

Web Security for Sitefinity Administrators

The free standalone Web Security lesson teaches administrators how to protect your websites and Sitefinity instance from external threats. Learn to configure HTTPS, SSL, allow lists for trusted sites, and cookie security, among others.

Foundations of Sitefinity ASP.NET Core Development

The free on-demand video course teaches developers how to use Sitefinity .NET Core and leverage its decoupled architecture and new way of coding against the platform.

Was this article helpful?

Next article

Custom access tokens