Hello,
Are there any options other than OAuth2SAMLBearerAssertion for implementing OAuth 2 when accessing resources of other applications (e.g., Google Drive) from an HCP application?
An HCP application has URLs that look something like this:
https://<application name><provider account>-<consumer account>.<landscape host>
This makes it possible to configure OAuth trust between an HCP app for a specific customer and Google Drive. However, I am not sure how to configure a global trust that would work for all customers, not just a specific one. The reason is that there is no customer-agnostic URL for an HCP application. Specifically, Google Drive requires specifying the following information when configuring OAuth trust for an external application:
- Authorized JavaScript origins, which cannot contain a wildcard (http://*.example.com) or a path (http://example.com/subdir)
- Authorized redirect URIs, which need to have a protocol, no URL fragments, and no relative paths. Can't be a public IP Address.
Considering that the HCP application's URLs will be different for each customer, then it would be required enumerating all customer URLs when configuring a trust with Google Drive.
Thanks,
Alexei Potiagalov (SAP)