Show TOC

OAuth 2.0 Flows with OAuth 2.0 ClientLocate this document in the navigation structure

There are various OAuth 2.0 flows that enable end users to use an OAuth 2.0 client to access a service provider that offers services.

Currently SAP offers the following OAuth 2.0 flows:

Scenario

Recommended Flow

Loosely integrated communication between an OAuth 2.0 client and a service provider, for example, SAP HANA Cloud Platform, Google Cloud Platform, or Microsoft Azure. No trust for single sign-on needs to be established between the application offered by the service provider and the AS ABAP. The service provider grants access to a certain set of resources stored in the service provider.

Authorization Code Flow for OAuth 2.0 Client

Users are authenticated at the OAuth 2.0 client (AS ABAP). The AS ABAP exchanges a SAML 2.0 token for an OAuth 2.0 access token issued by the service provider, for example, SAP JAM. Thus, the AS ABAP can use the OAuth 2.0 access token to access services offered by the service provider.

SAML 2.0 Bearer Assertion Flow for OAuth 2.0 Client