Resource owner password credentials¶
The resource owner password credentials flow lets the SDK exchange a username and password for an OAuth access token. This method is typically used only in controlled environments or legacy integrations where interactive login isn't possible.
Objective¶
Configure and use the Resource Owner Password Credentials (ROPC) OAuth flow with the Service‑Now SDK using values provided by your ServiceNow administrator.
Required values¶
Your administrator must provide:
| Value | Description |
|---|---|
| Service‑Now URL | Base URL of the instance |
| Client ID | From a ServiceNow OAuth application registry entry |
| Client Secret | From the same registry entry |
| Username | ServiceNow user account used for authentication |
| Password | Password for the user account |
SDK flow¶
flowchart TD
A[App Code] --> B[NewROPCAuthenticationProvider]
B --> C[newConfidentialClient]
C --> D[NewROPCCredential]
%% Initial Token Acquisition
D --> E[retrieveInitialToken]
E --> F[client.acquireTokenByUsernamePassword<br/>username, password]
F --> G[Access Token + Refresh Token]
G --> H[Cache Token]
%% Refresh Flow
H --> I{Token Expired?}
I -->|Yes| J[client.acquireTokenByRefreshToken]
J --> H
%% Request Pipeline
I -->|No| K[Kiota Request Adapter]
K --> L[HTTP Request to ServiceNow]
Initialize the SDK¶
import (
"log"
credentials "github.com/michaeldcanady/service-now-sdk/credentials"
servicenow "github.com/michaeldcanady/service-now-sdk"
)
func main() {
authority := credentials.NewInstanceAuthority("{instance}")
cred, err := credentials.NewROPCAuthenticationProvider(
clientID,
clientSecret,
username,
password,
authority,
[]string{string(authority)},
)
if err != nil {
log.Fatal(err)
}
clientOpts := []credentials.ServiceNowServiceClientOption{
servicenow.WithAuthenticationProvider(cred),
servicenow.WithInstance("{instance}"),
}
client, err := servicenow.NewServiceNowServiceClient(clientOpts...)
if err != nil {
log.Fatal(err)
}
// Client is now authenticated and ready to use
}