You want to use SAP NetWeaver Application Server ABAP as an OAuth 2.0 server to enable an outbound OAuth 2.0 client to access resources on an OAuth 2.0 protected web service offered by a service provider.
In the OAuth 2.0 server, you must determine the OAuth 2.0 flows you want to use, the resource owners' authentication, and which OAuth 2.0 scopes you assign to the resource owners. This data is stored in the registered inbound OAuth 2.0 client.
We recommend that you register an OAuth 2.0 client for each web service or application which you want to make accessible for end users.
Grant type extension with OAuth 2.0 SAML bearer assertion. To configure an OAuth 2.0 SAML bearer assertion flow, proceed as follows:
Establish SAML 2.0 trust relationship with the issuer of the SAML 2.0 assertion (see Configuring a Trusted Identity Provider for OAuth 2.0).
Register OAuth 2.0 clients (see Registering an OAuth 2.0 Client) at the OAuth 2.0 server (AS ABAP).
Configure resource owner authentication with a SAML 2.0 bearer assertion (see Configuring a Grant Type Extension with an OAuth 2.0 SAML Bearer).
Grant access to the resource owner by assigning the S_SCOPE authorization object (see Resource Owner in OAuth 2.0).
.
Grant type authorization code. To configure an authorization code flow, proceed as follows:
Register OAuth 2.0 clients (see Registering an OAuth 2.0 Client) at the OAuth 2.0 server (AS ABAP).
Configure resource owner authentication with an authorization code (see Configuring a Grant Type Authorization Code with OAuth 2.0).
Grant access to the resource owner by assigning the S_SCOPE authorization object (see Resource Owner in OAuth 2.0).