Skip to Content
0
Dec 23, 2020 at 09:52 AM

SAP Cloud Workflow Oauth authentication

974 Views

Hi,

I'm trying to call the API to get a list of workflow ids and start one workflow from postman.

I created a simple workflow and I can see that I have an instance of that workflow running on my tenant with a service key.

To authenticate, I'm calling the authentication service with Oauth, using my Client Id and Client Secret with the endpoint:
https://"account name".authentication.eu10.hana.ondemand.com/oauth/token?grant_type=client_credentials

I get a token, and I get a scope:

"scope": "workflow!b10150.TASK_GET workflow!b10150.PROCESS_TEMPLATE_DEPLOY workflow!b10150.PROCESS_VARIANT_DEPLOY uaa.resource workflow!b10150.FORM_DEFINITION_DEPLOY workflow!b10150.TASK_DEFINITION_GET workflow!b10150.WORKFLOW_DEFINITION_DEPLOY"

When I try to call "https://api.workflow-sap.cfapps.eu10.hana.ondemand.com/workflow-service/rest/v1/workflow-instances" with the bearer token the response I get is:

{
    "error": {
        "message": "User does not have sufficient privileges."
    }
}

That's because the role to that API endpoint is not correct.

So how do I add more roles to the token?

Is it when I'm deploying the MTA? Or do I need to change the security on my cloud tenant?

Thanks in advance.

Ricardo Carvalho

Attachments

6esoj.png (60.1 kB)