Skip to main content

Creating an Oauth2 Client


The OAuth 2.0 authorization framework enables a third-party application to obtain access to an HTTP service.

OAuth2 clients allow you to configure external services and applications to authenticate against Relativity in a secure manner.

The OAuth2 client setup information also includes:

  1. A client ID.

  2. A redirect URI.

  3. Client secret key.

These details will be used to validate your application and authorize the API calls.

Creating New Oauth2 Clients

After logging in for the first time to Checkmarx One the Oauth2 Clients window will be empty.


To create a new client, perform the following:

  1. Click Create_Client.png

  2. In the Add Client window, type the client ID and click Create Client

  3. The following will happen:

    1. The client ID and its secret key will be presented.

    2. Settings & Role Mapping sections will be added.

    3. Name and Description fields are optional.

  4. It is possible to change the secret key by clicking Reload

  5. Expand the Role Mapping section.

  6. There are 2 different role tabs:

    1. Checkmarx One roles - Checkmarx One application roles (Actions in the Checkmarx One application) (blue star)

    2. IAM roles - System user management.

  7. In the Checkmarx One roles tab, click Add to add roles to the client.

    For example:

  8. Once a Composite role is added to the client, its actions will be presented for viewing.

  9. To delete a role, click the “x” sign.

  10. Click Save_Client.png


There are 2 Checkmarx One role types in the system:

  1. Composite Roles - Aggregative actions collected into 1 roles type.

  2. Action Roles - A single action role.

For a detailed information regarding all role types see Managing Roles