Create a Headless Server OAuth2 application in Liferay
Register a Headless Server OAuth2 application in Liferay to obtain credentials for server-to-server authentication.
Sign in to Liferay
Sign in to your Liferay instance as an administrator.
- Open the Applications Menu from the top navigation bar.
- Navigate to Control Panel > Security > OAuth2 Administration.
- Click the New button in the top-right corner to add a new application.
Fill in application details
Complete the application form.
- Application Name:
StackOne - Select Client Secret Basic or Post as the Client Authentication Method.
- Select Headless Server as the Client Profile.
- Under Allowed Authorization Types, enable Client Credentials.
- Under Client Credentials User, select a user — this user’s permissions determine what the integration can access.
Save and copy the client credentials
Save the application and copy the generated credentials.
- The Client ID is shown on the application overview page.
- The Client Secret is displayed only once after the application is saved — copy it immediately and store securely for use later.
Find your Liferay domain
Your Liferay domain identifies your Liferay instance.
- Check your browser address bar when signed in to Liferay.
- Format:
{subdomain}.lfr.cloudorliferay.{yourcompany}.com - Example: if your URL is
https://acme.lfr.cloud/web/guest, your Liferay domain isacme.lfr.cloud - Do not include
https://or any trailing path.
Linking the Account from the Hub
Navigate to the Hub
Fill out the fields
- Liferay Domain
- Client ID
- Client Secret
If the account linking is successful, you will see the newly linked account in your Accounts page.