> ## Documentation Index
> Fetch the complete documentation index at: https://docs.stackone.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Connect Oracle Fusion HCM with OAuth 2.0 (Client Credentials) – StackOne Hub

> Link a Oracle Fusion HCM account in the StackOne Hub using OAuth 2.0 (Client Credentials). End-user guide to authorize the integration and start using Oracle Fusion HCM actions.

<Warning>Administrator access to Oracle Cloud Infrastructure Identity and Access Management (OCI IAM) is required to create OAuth applications.</Warning>

<section data-guide-section data-guide-scopes="">
  <h2>Finding Your Oracle Cloud URLs</h2>

  <p>You need two URLs from your Oracle Cloud environment: the REST Server URL and the Identity Cloud Service URL.</p>

  <Steps>
    <Step title="Find the REST Server URL">
      <div data-guide-step data-guide-scopes="" data-guide-display-scopes-list="">
        <p>Sign in to your <a href="https://cloud.oracle.com" target="_blank" rel="noopener noreferrer">Oracle Cloud account</a>. Your REST Server URL follows this format:</p>

        <ul>
          <li>Format: `https://servername.fa.{datacenter}.oraclecloud.com`</li>
          <li>Example: `https://mycompany.fa.us2.oraclecloud.com`</li>
          <li>The URL is visible in your browser address bar when logged into Oracle Fusion HCM</li>
        </ul>
      </div>
    </Step>

    <Step title="Find the Identity Cloud Service URL">
      <div data-guide-step data-guide-scopes="" data-guide-display-scopes-list="">
        <p>Navigate to <strong>Identity & Security</strong> > <strong>Domains</strong> in the Oracle Cloud Console.</p>

        <ul>
          <li>Select your identity domain</li>
          <li>Copy the <strong>Domain URL</strong> which follows this format:</li>
          <li>Format: `https://idcs-{identifier}.identity.oraclecloud.com`</li>
          <li>Example: `https://idcs-abc123def456.identity.oraclecloud.com`</li>
          <li>Store both URLs securely for use later</li>
        </ul>
      </div>
    </Step>
  </Steps>
</section>

<section data-guide-section data-guide-scopes="">
  <h2>Creating an OAuth Application</h2>

  <p>Register a confidential application in Oracle Identity Cloud Service to obtain OAuth credentials.</p>

  <Steps>
    <Step title="Access the Identity Domain">
      <div data-guide-step data-guide-scopes="" data-guide-display-scopes-list="">
        <p>In the Oracle Cloud Console, navigate to <strong>Identity & Security</strong> > <strong>Domains</strong> and select your identity domain.</p>
      </div>
    </Step>

    <Step title="Create a Confidential Application">
      <div data-guide-step data-guide-scopes="" data-guide-display-scopes-list="">
        <p>Click <strong>Applications</strong> in the left menu, then click <strong>Add application</strong> and select <strong>Confidential Application</strong>.</p>

        <ul>
          <li>Enter a name for your application (e.g., "StackOne Integration")</li>
          <li>Click <strong>Next</strong> to continue</li>
        </ul>
      </div>
    </Step>

    <Step title="Configure Client Credentials">
      <div data-guide-step data-guide-scopes="" data-guide-display-scopes-list="">
        <p>In the <strong>Client configuration</strong> section, select <strong>Configure this application as a client now</strong>.</p>

        <ul>
          <li>Under <strong>Allowed grant types</strong>, select <strong>Client credentials</strong></li>
          <li>Under <strong>Client type</strong>, ensure <strong>Confidential</strong> is selected</li>
        </ul>
      </div>
    </Step>

    <Step title="Configure Resource Access">
      <div data-guide-step data-guide-scopes="" data-guide-display-scopes-list="">
        <p>Scroll to <strong>Token issuance policy</strong> and add the required scopes.</p>

        <ul>
          <li>Click <strong>Add scope</strong> under <strong>Resources</strong></li>
          <li>Search for and select your Fusion Applications resource</li>
          <li>Add all scopes needed for the data you want to access</li>
          <li>The scope format is typically `urn:opc:resource:fa:instanceid={instance_id}urn:opc:resource:owner::all`</li>
        </ul>
      </div>
    </Step>

    <Step title="Complete and Activate">
      <div data-guide-step data-guide-scopes="" data-guide-display-scopes-list="">
        <p>Click <strong>Next</strong> through the remaining sections, then click <strong>Finish</strong>. After creation, click <strong>Activate</strong> to enable the application.</p>
      </div>
    </Step>
  </Steps>
</section>

<section data-guide-section data-guide-scopes="">
  <h2>Copy Your OAuth Credentials</h2>

  <p>Retrieve the Client ID and Client Secret from your newly created application.</p>

  <Steps>
    <Step title="Get Client Credentials">
      <div data-guide-step data-guide-scopes="" data-guide-display-scopes-list="">
        <p>In your application details page, find the <strong>General Information</strong> section.</p>

        <ul>
          <li>Copy the <strong>Client ID</strong> and store it securely</li>
          <li>Click <strong>Show secret</strong> next to Client Secret, copy it, and store it securely for use later</li>
          <li>The Client Secret is only shown once, so ensure you save it</li>
        </ul>
      </div>
    </Step>
  </Steps>
</section>

<div data-whitelabel-hide>
  <h2>Linking the Account from the Hub</h2>

  <Steps>
    <Step title="Navigate to the Hub">
      Use one of the three <a href="/guides/accounts-section#linking-accounts">Linking Account Methods</a> to access the Hub.
    </Step>

    <Step title="Fill out the fields">
      Fill out the following fields using details from your provider:

      <ul>
        <li><strong>Client ID</strong></li>
        <li><strong>Client Secret</strong></li>
        <li><strong>REST Server URL</strong></li>
        <li><strong>Identity Cloud Service URL</strong></li>
        <li><strong>Scope</strong></li>
      </ul>
    </Step>

    <Step title="Connect">
      <ul>
        <li>Click <strong>Connect</strong></li>
        <li>If applicable, the provider will redirect you to a sign-in or authorization page. Complete the provider's authorization flow.</li>
        <li>Once authorization is successful, you will see a confirmation popup</li>
      </ul>
    </Step>
  </Steps>

  <p>If the account linking is successful, you will see the newly linked account in your <a href="/guides/accounts-section">Accounts</a> page.</p>
</div>
