Configure the identity server for client credentials
Contact Nintex Customer Support to onboard your environment with client credentials.
You need to provide a SHA256 hash of your Client Secret for a successful onboarding using Identity Server with Client Credentials.
Generate the secret hash from a Client Secret value in a .NET console application. The onboarding team does not need the actual secret value, only the hash of it.
Use the following steps and code example to generate the hash:
- Add the IdentityModel NuGet package.
- Add the IdentityModel library reference in the using section of the class:
Copy
Sample code to generate a hash of your Client Secret
using IdentityModel;
.
.
.
/* Inside a method call */
var mysecret = "my secret value I am not sharing";
var encryptedSecret = mysecret.ToSha256();
Console.WriteLine(encryptedSecret);
Console.ReadLine();
The following is optional information
- ClientName:
The name we will use to map to a FQN combined with the K2SQL label.
This will be exposed in the UI user pickers under the K2SQL label
Default value ClientCredentialsApp. - ClientId:
The ID used in combination with the ClientSecret for authentication.
Defaults to a generated value following the format idt.cc.hash. - OAuth resource name:
The name of the resource linked to the client ID that will appear under Oauth resource in management. The name needs to be unique per client ID.
Defaults to IdentityTokenClientCredentials Login. - Secret Expiration Date: This defaults to the current date plus 2 years.