Skip to main content

Configure OAuth 2.0 authentication

Invicti Platform supports the OAuth 2.0 authentication mechanism, allowing you to configure targets for web applications that require OAuth 2.0. This document explains how to add an OAuth 2.0 login sequence to a target in Invicti Platform.

How to set up an OAuth 2.0 login sequence

  1. Select Inventory > Targets from the left-side menu.
  2. Choose the target for which you would like to configure OAuth 2.0 authentication, and select Edit target.
  3. Open the Authentication form.
  4. In the Authenticated method, select OAuth2.
OAuth2 authentication method selection.
  1. Use the drop-down to set the Grant Type to one of the OAuth2 Authentication Flow mechanisms. The supported grant types are:
    • Authorization Code
    • Implicit
    • Client Credentials
    • Password Credentials
  2. Set the Access Token URL.
  3. Set the Client ID and Client Secret fields for your target. These are unique values assigned to your web application by the Authentication Provider when you registered your web application with the Authentication Provider for its login functionality.
  4. Set the Scope (optional) field to a space-delimited list of elements for which permission is being requested.
OAuth2 Settings
  1. Select Save target configuration or Save and scan to confirm.
Save OAuth2 configuration.

Need help?

Invicti Support team is ready to provide you with technical help. Go to Help Center

Was this page useful?