The OAuth2 configuration in PAS for OpenEdge involves these files:
oeablSecurity.properties — contains property settings for JWT / OAuth2 validation operations and Client-Principal generation.
There is a hierarchy of oeablSecurity.properties files, which exist in the following locations:
oe_install_dir/servers/pasoe/conf/
instance/conf/
instance/ablapps/<abl-app-name>/conf/
instance/<web-app-name>/WEB-INF/
See Progress Application Server for OpenEdge: Administration Guide for more information.
oeablSecurityJWT.csv — contains the Resource Server’s URL access controls for JWT & OAuth2 Client access based on the token's claim (claim) field
oauth2ResSvcClients.cfg — a file containing OAuth2 Client authorization information for client ID (client_id) field ( not required for standard JWT token validation )
oeablSecurity.properties — contains property settings for JWT / OAuth2 validation operations and Client-Principal generation.