You're almost there! Please answer a few more questions for access to the Applications content. Complete registration
Interested in joining? Complete your registration by providing Areas of Interest here. Register

Is it possible to use the Oracle Public Certificate for inbound API authentication

Accepted answer
254
Views
3
Comments
edited Apr 5, 2023 10:47AM in Applications Security 3 comments

Summary:

We are using a JWT token to authenticate REST API calls to HCM. Currently we generate our own key pair and register the public certificate in the API Authentication section of the Security Console as per https://docs.oracle.com/en/cloud/saas/human-resources/23a/ochus/configure-inbound-authentication.html#s20076125

This works fine, however, the documentation above states:

  1. "On the Oracle API Authentication Provider Details page, click the Inbound API Authentication Public Certificates tab and click Edit. You can use the default Oracle public certificate or add a new one."

This implies that we can create our JWT tokens with the private key corresponding to the default Oracle public certificate.

Howdy, Stranger!

Log In

To view full details, sign in.

Register

Don't have an account? Click here to get started!