This controller service provides a way of working with access and refresh tokens via the password and client_credential grant flows in the OAuth2 specification. It is meant to provide a way for components to get a token from an oauth2 provider and pass that token as a part of a header to another service.


oauth2, provider, authorization


In the list below, the names of required properties appear in bold. Any other properties (not in bold) are considered optional. The table also indicates any default values, and whether a property supports the NiFi Expression Language.

NameDefault ValueAllowable ValuesDescription
SSL ContextController Service API:
Implementations: StandardSSLContextService
No Description Provided.
Access Token UrlThe full endpoint of the URL where access tokens are handled.
Supports Expression Language: true (will be evaluated using variable registry only)

State management:

This component does not store state.


This component is not restricted.

System Resource Considerations:

None specified.