About OAuth

OAuth is an open protocol that enables third-party applications to gain limited access to an HTTP service.

The following roles (entities) are available in OAuth 2.0:

Resource server: SAPI
Resource owner: Automation Engine User
Client: ServiceNow
Authentication server: SARA

ServiceNow Instance with Generated SARA Services

OAuth 2.0 roles: client

Three main steps are required to configure and consume SARA services from ServiceNow:

Prepare SN OAuth client for SARA
Import Services from SARA to SN
Consume SARA services

SARA REST Service

OAuth 2.0 role: resource server

The SARA Rest Service (SAPI) uses OAuth 2.0 to authorize requests to the API. To call the OAuth 2.0 protected SAPI REST service, each request contains a valid access_token (which is stored in the user profile). If the user has no token assigned, SARA/AE credentials must be provided.

About OAuth

ServiceNow Instance with Generated SARA Services

SARA REST Service

Further Information