The OAuth Server Fields
- Last Updated: May 20, 2026
- 2 minute read
- MarkLogic Server
- Version 12.0
- Documentation
The OAuth Server fields appear when either Authentication or Authorization is oauth.
Field |
Description |
|---|---|
OAuth Flow Type |
The type of flow that the OAuth server will support:
|
OAuth Vendor |
The third-party authorization vendor that will be used with the OAuth server. |
OAuth Client ID |
Client ID of the OAuth server on the vendor. |
OAuth JWT Issuer URI |
(OAuth Vendor = |
OAuth Token Type |
The access token format. |
OAuth Username Attribute |
(Required) The claim name to store the username information extracted from the access token. |
OAuth Role Attribute |
(Required) The claim name to store the role information extracted from the access token. |
OAuth Privilege Attribute |
(Optional) The claim name to store the privilege information extracted from the access token. |
OAuth JWT Algorithm |
(OAuth Token Type =
|
OAuth JWT Secrets |
The list of secrets MarkLogic Server should use to verify JWT access tokens, also known as validating the JWT access token signature.
Note:
The JWT Secrets field secures both symmetric and asymmetric signature keys. |
OAuth JWKS URI |
(Optional) JSON Web Key Sets Endpoint for obtaining JSON Web Keys. URI must support TLS (HTTPS) or be a loopback URI.
Note:
If you are using an asymmetric algorithm, then you can specify a JWKS URI to validate incoming JWT access tokens with JWKS instead of with JWT Secrets signature keys. |