OAuth credentials (for app authentication)

OAuth credentials DEV

OAuth credentials are an item used to support authentication workflows. They are required to implement user authentication and app authentication using OAuth 2.0 workflows.

Both a client_id and client_secret are required to implement app authentication.


Service privileges DEV
The privilege selector in developer credentials settings

All developer credentials include a privilege selector that can authorize access to secure ArcGIS services. Once privileges are configured using the selector, the resulting access token will be authorized to access the specified services and perform operations.

The privileges available to developer credentials include ArcGIS location services such as the basemap styles service and routing service. The available location services depend on the account type, subscription type, and roles of the owner's ArcGIS account.

Item access

Item access DEV
The item access menu in developer credentials settings

Developer credentials also include an item access menu used to allow access to specific items in a portal. The resulting access tokens will be authorized to access any items you specify in this menu.

The items available in this menu include all of the items in your organization that your account has access to with a sharing level of Private, Group, or Organization.


Referrers DEV
The referrers field in developer credentials settings

A referrer is an HTTP header field used to identify the client requesting a server resource. This functions as a security measure, allowing applications to confirm their client's identity. When developer credentials have a specific HTTP referer header set, services can confirm that an incoming request's referrer matches one of the valid referrers assigned to that access token.

Specific domains can be provided or you can use wildcard characters (*) in the subdomain of your allowed referrer. For example https://*.your-app.com will allow the access token to be used on both https://dev.your-app.com and https://your-app.com. While it is also possible to restrict access token use to specific paths (https://your-app.com/page), we do not recommend this method because browsers may remove the path due to privacy concerns.

Usage tracking

All services and content accessed with developer credentials are tracked. You can monitor the usage of credentials in order to view the consumption of services and the billing amount.

The steps to monitor usage vary based on the type of ArcGIS account the credentials were created with:

ArcGIS Location Platform developers use their dashboard to monitor service usage. To monitor service usage of developer credentials, use the following steps:

  1. Go to location.arcgis.com and sign in with an ArcGIS Location Platform account.

  2. Click My dashboard > Usage > Developer credentials.

  3. In the left sidebar, select the developer credentials item you would like to review usage for.

  4. In the Billing cycle selector, choose a billing cycle to inspect. The main panel of the window will show a usage report.

    Billing cycle selector
  5. Review the usage report for the developer credentials. Usage information is organized by secure resource. Click Download CSV to download the information as a .csv file.

    OAuth credentials usage report
  6. Click the dropdown button on a specific service to view a usage timeline. The panel will show the resource consumption for each day of the billing cycle.

    Credentials usage timeline

Your browser is no longer supported. Please upgrade your browser for the best experience. See our browser deprecation post for more details.