Genesys Cloud - Developer Community

 View Only

Discussion Thread View

  • 1.  Different client secrets in Genesys UI and State file.

    Posted 20 days ago

    Hi,

    I am trying to create OAuth using CX as a Code and, as per latest Genesys upgrade, we should be able to view the client secret in the state file. 
    After creating the OAuth through CX code, I see two different client secrets in state file and Genesys UI for the same OAuth that has been created. 
    I guess this is not the ideal situation. Could someone please look into it.

    Thank you,
    Komali.


    #CXasCode

    ------------------------------
    Komali Sidagam
    ------------------------------


  • 2.  RE: Different client secrets in Genesys UI and State file.

    Posted 18 days ago

    Hi Komali,

    You should not be able to see any secret information in the state file.  What you are seeing is a computed value in the state file that is not reflective of the actual client secret.  We only return the client secret at the time the oauth client is created.  

    Thanks,
        John



    ------------------------------
    John Carnell
    Director, Developer Engagement
    ------------------------------

    Original Message


  • 3.  RE: Different client secrets in Genesys UI and State file.

    Posted 15 days ago
    Edited by Komali Sidagam 14 days ago

    Hello @John Carnell,

    When you say, "We only return the client secret at the time the OAUTH client is created", where exactly we can retrieve the secret?
    I could only see client ID at the time of creation (i.e., while applying terraform configuration) in the server. I don't see the secret. 

    Thank you,

    Komali.



    ------------------------------
    Komali Sidagam
    ------------------------------

    Original Message


  • 4.  RE: Different client secrets in Genesys UI and State file.

    Posted 13 days ago

    Hi @Komali Sidagam

    Assume you are using latest terraform provider version. You would not be seeing the client_secret in the state file as a default option. 

    You can dump your secret into an external file . please see directory_client_secret  in https://registry.terraform.io/providers/MyPureCloud/genesyscloud/latest/docs/resources/oauth_client

    resource "genesyscloud_oauth_client" "auth_Example" {
  state                         = "active"
  access_token_validity_seconds = 86400
  authorized_grant_type         = "CLIENT-CREDENTIALS"
  name                          = "Auth Client Example"
  roles {
    division_id = "xxxx"
    role_id     = "xxx"
  }
   integration_credential_name = "new credential"
directory_client_secret = "${path.module}/secrets"

}



    or if you want to refer this in integration credentials without hardcode, you can simply refer like example below 

    resource "genesyscloud_integration_credential" "credentials_example" {
name = "credentials_example"
credential_type_name = "pureCloudOAuthClient"
fields = {
clientId = genesyscloud_oauth_client.auth_Example.client_id
clientSecret = genesyscloud_oauth_client.auth_Example.client_secret
}
}

resource "genesyscloud_oauth_client" "auth_Example" {
state = "active"
access_token_validity_seconds = 86400
authorized_grant_type = "CLIENT-CREDENTIALS"
name = "Auth Client Example"
roles {
division_id = "xxxx"
role_id = "xxx"
}
integration_credential_name = "new credential"
}


    ------------------------------
    Venkata Hemanth Dogiparthi
    Manager, Software Engineering
    ------------------------------

    Original Message


Need Help finding something?

Check out the Genesys Knowledge Network - your all-in-one access point for Genesys resources