Hi All,
in our company we have a .NET web application (App1) that expose a set of APIs. This API are also consumed by a specific automation processes that use the activity HTTP Request in clear without any kind of authentication.
There is an ongoing internal project in order to integrate our App1 with our identity manager (Azure AD). The authentication will be provided by Entra ID.
We have already configured an RPA app registration on Azure AD in order to have client_id and related client_secret but we have some issues to understand which is the correct activity or how to set the HTTP Request activity in order to receive an access_token to invoke the API.
Have you a guide to include in an automation an OpenID(EntraID) authentication?
take in count that the API call steps should be these:
1- RPA automation request and receive a access_token (AT1) from Azure
2- RPA automation invoke Api1
3- APP backend check the Validity of AT1 by Azure call
4- Azure backend send and OK
5- APP validates the related scope requested by AT1
6- Send the Api1 content to RPA automation
Thanks
Manuel
