Powered by Zoomin Software. For more details please contactZoomin

Secure MarkLogic Server

Table of Contents

OAuth

Save PDF
Save selected topicSave selected topic and subtopicsSave all topics
Share
Share to emailCopy topic URL
Print
  • Last Updated: May 20, 2026
  • 1 minute read
    • MarkLogic Server
    • Version 12.0
    • Documentation

OAuth authentication is available on all server types.

There are three major components to OAuth:

  • The Authorization Server, which authenticates a client and provides an Access Token.

  • The Access Token, which is included in requests to the Resource Server.

  • The Resource Server, which validates the Access Token and sends the requested resources to the client. MarkLogic Server is a Resource Server.

This is the OAuth authentication workflow:

  1. The user sends their credentials to the client.

  2. The client sends the user credentials to the Authorization Server: the OAuth vendor acting as the external agent.

  3. The Authorization Server validates the user credentials.

  4. The Authorization Server sends an Access Token to the client.

  5. The client sends a resource request that includes the Access Token to the Resource Server: MarkLogic Server.

  6. The Resource Server validates the Access Token.

  7. The Resource Server sends the requested resources to the client.

To use OAuth, you must also configure External Security.

OAuth can be used only with the OAuth authorization scheme.

TitleResults for “How to create a CRG?”Also Available inAlert