HIN Access - OAuth2 Integration

Token Groups

A token group is a specific configuration set up in the backend for an OAuth2 client to enable access to certain applications or services. This configuration is not performed by the customer themselves, but by us as administrators or developers of the system. The token group serves as a kind of role or permission assigned to the OAuth2 client, determining which resources or applications the client is allowed to access.

An example of this is the token group "hin_covercard", which is required for accessing the Covercard application. When an OAuth2 client is configured to interact with Covercard, it must be equipped with the corresponding token group. This token group is then required when creating requests, particularly when forming the request link for POST requests.

By correctly configuring the token group, it can be ensured that the OAuth2 client is successfully authenticated and authorized to access the relevant application. This is an important aspect when implementing OAuth2-based authentication and authorization mechanisms in our system.