Content
View differences
Updated by Dominic Bräunlein 11 months ago
**As** an integration
**I want to** obtain a client credential access token via API
**so that** I can save it for the SCIM client configuration.
**Acceptance criteria**
* In OpenProject a third party integration can obtain client credential access tokens via API by providing OAuth App ID and Secret.
* The max integration can optionally set an expiry date of the token when the token is obtained.
* The max expiry date must be 1 year from creation. or lower.
**Technical notes**
* <br>
**Permissions and visibility considerations**
* Everyone with a valid OAuth App ID and Secret.
<br>
**Out of scope**
* Revoking of tokens?
**I want to** obtain a client credential access token via API
**so that** I can save it for the SCIM client configuration.
**Acceptance criteria**
* In OpenProject a third party integration can obtain client credential access tokens via API by providing OAuth App ID and Secret.
* The max
* The max expiry date
**Technical notes**
* <br>
**Permissions and visibility considerations**
* Everyone with a valid OAuth App ID and Secret.
<br>
**Out of scope**
* Revoking of tokens?