The authentication methods to be used for asynchronous communication (callbacks) can be defined in the Authentication tab. The callbacks are used, for example, to transmit information about the status of a payment. However, it may happen that the system or endpoint to which collana pay sends these notifications is not publicly available. In such cases, a suitable authentication method must be specified to ensure communication. After configuration, collana pay generates an authentication ID that is later used in the requests.
An authentication method can be added by clicking on the + Add Authentication button.
A distinction is made between two authentication methods:
Basic authentication can be used if communication takes place via the web. In this case, only the user name and password need to be entered. This applies in particular to the on-premises implementation.
The fields underlined in red are mandatory fields.
Once the authentication method has been created, it will be visible in the overview:
OAuth2 authentication meets a high security standard and is particularly relevant for communication with BC SaaS, for example. It is the only authentication method in this context. Additional configurations are required to use this authentication method, which are stored in the tenant.
After clicking on the + Add Authentication button, the OAuth2 method can be selected:
The marked fields are mandatory fields and the necessary settings (as an example using BC-SaaS) can be retrieved from the Entra ID.
Fields |
Description |
Description |
A desired description can be entered here. |
Client ID |
The client ID was created during app registration. |
Client Secret |
The client secret is an essential component of OAuth2 authentication and was also created in Entra ID. |
Scope |
The scope remains unchanged. It defines access to the Business Central API. |
URL |
The token URL is required in this field. The information can be found in the overview in the Endpoints section. This is always the link to the OAuth 2.0 token endpoint (v2). |