Create a Connected App

  • Updated on Feb 23, 2025
  • Published on Nov 29, 2024
  • 1 minute(s) read
  • cH
  • Migration Team

Information:

To disable the PKCE security feature for your OAuth authorization, uncheck the "Require Proof Key for Code Exchange (PKCE) Extension for Supported Authorization Flows" option before saving your settings.

  1. Navigate to Setup the App Manager.

  2. Select New Connected App.

  1. Enter the below information for the new Connected App:

    Step 3-4: Creating a New Connected App and configuring settings

Basic information - Type this in

  • Name: Fullcast Motion Package

  • API Name: Fullcast_Motion_Package

  • Contact Email: Email address

API (Enable OAuth Settings)

  • Enable OAuth Setting - Check

  • Callback URL: Configure based on which instance you are working with. The start of each URL below should match the Fullcast instance URL you will authenticate motion in.  

  • Selected OAuth Scopes:  

    • Access the identity URL service(id, profile, email, address, phone)

    • Manage user data via APIs(API)

    • Manage user data via Web Browsers (web)

    • Perform requests on your behalf at any time (refresh_token, offline_access)

  • Checkboxes:    

    • Uncheck:      

      • Require Proof Key for Code Exchange Leave

    • Check      

      • Require Secret for Web Server Flow

      • Require Secret for Refresh token flow

    Warning:

    You must disable the PKCE security feature for your OAuth authorization before saving your settings. To disable the PKCE security feature uncheck the "Require Proof Key for Code Exchange (PKCE) Extension for Supported Authorization Flows" option.

Leave the following sections as is:

  • Web App Settings

  • Custom Connected App Handler

  • Mobile App Settings

  • Canvas App Settings

  1. Select Save.

    Steps 5-7: Setting Policies for the Fullcast Motion Module Connected App

  2. Navigate to the Fullcast Motion Module Connected App and select Manage

  3. Select Edit Policies.

  4. Set the policies as follows:

Basic Information

  • Leave As Is

OAuth Policies

  • Permitted Users: All users may self-authorize

  • IP Relaxation: Enforce IP restrictions, but relax for refresh tokens

  • Refresh Token Policy: Refresh token is valid until revoked

Remaining Sections can be left as is:

  • Session Policies

  • Custom Connected App Handler

  • User Provisioning Settings