Please enable JavaScript to view this site.

Manual Invantive Cloud

Navigation: Invantive Cloud > Preauthenticate Application

Preauthenticate Exact Online

Scroll Comments Prev Top Next More

To preauthenticate an Exact Online application, please execute the following steps:

Preparation

Ask Invantive Support for the values of your app, or execute the following steps:

Navigate to the Exact App Center:

exact-app-center

Choose the correct country.

Log in:

exact-app-center-log-in

 

For the next step, make sure that you have an Exact Online App Center subscription. This is a free subscription that allows you to register your own API keys.

To register for such an account, go to https://apps.exactonline.com

Scroll to the bottom and search for "Are you an app developer?", click on "Learn More".

exact-app-center-app-developer

On the next page, choose 'Step 1: Register', click on the 'Register your app' button.

exact-app-center-register

On the next page, you'll see a form to register, you can choose "Login" at the bottom of the form.

exact-app-center-login

Now check for the following: "Manage subscription" should be checked under the Grant rights for the user. You can check that on the Grant rights page for the user: Master data > Overview | Users > User > Rights.

exact-online-master-data

exact-online-users-overview

exact-online-user

exact-online-rights

exact-online-manage-subscription

If you go back to https://apps.exactonline.com, there should be a new option available:

Choose 'Manage my apps' or 'Register API Keys':

 

exact-app-center-manage-my-apps

Choose the app that you wish to preauthenticate.

Click on 'Show' next to the client secret.

Take note of the following values as shown below: client ID, client secret and redirect URI. When you preauthenticate for use with Exact Online using an Invantive product and when it fits your security policy to use an external provided callback URL, you can use https://eolclientredirect.invantive.com. Releases in 2019 support any callback URL.

exact-app-center-app-client-id

Preauthenticate

Then preauthenticate the application:

Open Invantive Cloud.

Choose "Preauthenticate" in the menu.

Read and fill out the form as shown using the values previously noted:

exact-app-preauthenticate-form

When you use a redirect URI different from cloud.invantive.com, remember to check the box "Deviating Redirect URI". If so, an additional form appears labeled "Exchange Code".

Click on the "Preauthenticate" button.

Exact Online will now ask you to authenticate yourself:

exact-online-authenticate

On successful authentication, Exact Online will ask you to authenticate access by the application to your Exact Online data with the same privileges as the user:

exact-online-authenticate-app

Click on "Allow".

The browser will be redirected to the redirect URI.

The URL will contain essential information for preauthentication.

Click in the URL and copy the whole URL to the clipboard:

exact-online-redirect-uri-with-token

Exchange the URL into a OAuth2 refresh token by pasting it in the field "Code Return URL" and press the button "Exchange".

exact-online-exchange-code

The resulting page displays the settings for preauthenticating your application:

exact-online-authenticated-app

The field "Refresh Token" contains the OAuth2 refresh token.

The field "Content settings.xml" contains an Invantive database definition for storage as a file named settings-<NAME>.xml in %USERPROFILE%\invantive. Confidential information in the connection string is however readable in plaintext.

To encrypt the connection string in settings.xml with your Invantive device key, you can use the Invantive Script statement in the field "Encrypt Statement". You must execute this statement on the same device as you will be using the connection string since encryption with the Invantive device key effectively binds the encrypted text to the hardware.