OAuth2 support has some fundamental differences that set it apart from other direct user login and OpenEdge SSO processes available in PAS for OpenEdge. Therefore, it has its own Spring Security LoginModel configuration that cannot be combined with any type of direct user login.

Note: If multiple forms of client authentication are required for a single OpenEdge ABL application, a second OpenEdge web application should be deployed and mapped to the same ABL application, where the alternate user login may be configured.

Enabling the OpenEdge web application in PAS for OpenEdge to support OAuth2 support is accomplished by setting the client.login.model property in the oeablSecurity.properties file to oauth2.

Note: When client.login.model is set to oauth2, the http.all.authmanager property value has no effect.