How to customize client secret on Authentication Service ?
Hi,
As part of the work to implement SSO, I created an OIDC "Authentication Service" in Pega.
I need to define a "client ID" and "client Secret," but when moving to a higher environment, I want to be able to parameterize the "client Secret" because it is not the same across different environments. Is there a solution that allows me to use a DSS or something else for this?
Updated: 31 Jul 2025 17:51 EDT
ai4process ltd
GB
Authentication service is a Data instance in itself.. you dont need to unlock the Ruleset version to update the Authentication service.
you can directly update the client secret in the respective environment.
Unfortunately you cannot parameterise/ use DCR for client secret in AUth service
Updated: 1 Aug 2025 3:41 EDT
MGEN
FR
Thank you, that's what I thought — I can't configure the 'client secret'. That's a shame, it would have been interesting.
Do you know if the 'client secret' is properly exported/imported through the 'Product'?
Which would allow me to produce several JARs, one for each of my environments.
ai4process ltd
GB
@ArnaudA We faced issues with the Authentication Service itself when we tried to migrate it from Dev env to staging env to pre-prod.
the end point URL that is defined for SSO was not functioning when we migrated it to higher environment and we had to manually configure it in each environment including Production. Our issue could be due to some IP Whitelisting/ PSC setup as well... so pls verify if you can do it from Dev to staging and if it doesnt work you would have to manually configure it in respective environments.