Finding Your Account ID
The Account ID is a UUID required for all account-level API calls.
Sign in to the Account Console
Sign in to the Databricks Account Console.
Creating an App Connection
Register a custom OAuth app connection to allow StackOne to authenticate on behalf of your users.
Navigate to App Connections
In the left sidebar, click Settings, then click the App connections tab.
Add a New Connection
Click Add connection and fill in the following details:
- Application name: Enter a descriptive name (e.g. “StackOne Integration”)
- Redirect URLs: Enter
https://api.stackone.com/connect/oauth2/databricks/callback - Access scopes: Select All APIs — this is required for StackOne to access the SCIM provisioning APIs
- Generate a client secret: Check this box to generate a secret for server-side authentication
- Access Token TTL: Leave as default (60 minutes).
- Refresh Token TTL: Set to the maximum value of 129,600 minutes (90 days) to avoid the account going into an errored state when the refresh token expires. After 90 days, you will need to re-authenticate by editing the account in StackOne.
Copy the Credentials
After clicking Add, a Connection created dialog appears with a warning: “Make sure to copy the secret now. You won’t be able to see it again.” Copy both values using the copy icons and click Done.
- Client ID — click the copy icon and paste into the Client ID field in StackOne
- Client Secret — click the copy icon and paste into the Client Secret field in StackOne
Understanding Scopes
Scopes control which Databricks APIs the OAuth connection can access. The scope is configured during the app connection setup (Access scopes) and also sent in the OAuth authorization request.
Creating the StackOne Connector Profile
To create the Connector Profile in StackOne for Databricks:Navigate to Connector Profiles
Create New Connector Profile
- Click + Connector Profile
- Search for and select Databricks
- Select Type as OAuth 2.0 (U2M - User to Machine)
- Fill out the fields using details retrieved from your provider:
- Account ID
- Client ID
- Client Secret
- Scopes (Optional)
- (Optional) Select Actions to be enabled for this Connector Profile
- Click Create profile