Hello,
I am trying to integrate my third-party application with the Sugar REST API for a SugarCloud instance that uses SugarIdentity.
I found a description of a SugarIdentity 3-legged OAuth consent flow for OPI (Sugar Outlook Plug-In), where the user is redirected to the Sugar login service, authenticates through the IdP, sees a SugarIdentity consent screen, and the client receives access and refresh tokens.
However, I could not find equivalent documentation for integrating a custom third-party application.
Could you please explain how this integration should be implemented today for an external app?
Specifically, I need to understand the supported flow for a third-party app that accesses the Sugar REST API on behalf of an SSO user in a SugarIdentity-enabled tenant.
The main points I need are:
- Where should the third-party app/client be registered?
- Which OAuth flow should be used for this scenario?
- What are the correct authorization and token endpoints?
- Can a normal SSO user authorize such an app and grant access to their Sugar data?
- If there is documentation for this flow, could you please share it?
I am not asking about configuring Okta/Azure/Google as login providers for Sugar itself.
I am asking about a custom external app integrating with Sugar via SugarIdentity for SSO users.
Thanks.