Management ConsoleOAuthAdd users

Add users

This topic shows how to add a user for an OAuth application.

  1. Select the Users tab and click the plus sign in the upper left corner.

    A dialog box with several tabs appears.

    Alternatively, on the Application tab, select the preferred application, click the context menu, and select Add user.

  2. On the Select application and user name tab, select an application and specify a user name.

    This user name does not need to match the user name used by the service provider. It is only used inside Management Console.

    • Tenant. If your OAuth application is created with Microsoft Azure AD 2.0, an extra parameter called Tenant is also present.

      If you have a single-tenant application, creating a user requires the tenant ID. Copy the Directory (tenant) ID from the Overview > Essentials page of the application shown on the Microsoft Azure portal.

      If you have a multi-tenant application, you may choose to specify the ID of the required tenant or leave this parameter empty. In the latter case, the ID of the tenant whose credentials you specified will be used by default.

  3. Click Next.
  4. On the Authorize tab, click the Authorization Link.

    This opens the website of the service provider. At Twitter, it looks as follows:

  5. Enter the user name and password and click Authorize app.

    The service provider now forwards you to the callback URL. If the authorization was successful, the Proceed with OAuth Authorization page appears.

  6. Close the browser tab and return to the Management Console. In the wizard, click Next.

    On the Retrieve access tokens tab, you will see the access tokens that can be used for accessing the service provider on behalf of the user. They have been securely stored in the Management Console keystore and can now be used as input to schedules.

    You will need sample access tokens as test input for the robot that we will build in a later step. Copy the values into a text editor such as Notepad. For security reasons, you will not be able to retrieve them from the keystore in unencrypted form after clicking Finish.

    At Twitter, we get both an access token and an access token secret. Service providers that use OAuth 2.0 do not use an access token secret, so they will only return an access token. Some service providers will additionally return a refresh token. This is used when the access tokens returned by the service provider are only short-lived. Robots can then use the refresh token to obtain new access tokens without a user having to re-authorize through the Management Console. To create robots against the API of a service provider, you must copy all of the tokens displayed at the final step of the wizard.

  7. Click Finish.

    The user entry appears in the OAuth section.

Delete users

To delete a user, select it in the table and click the bin icon in the upper left corner. You are prompted to confirm the deletion.

If you edit the consumer key or consumer secret, you need to delete all OAuth users tied to this application. See Add applications for details.