oauth: This group will be used if you configure 'OAuth Tokens' in the Integration Server > CloudStreams > Administration > OAuth Tokens section.

oauth_v10a: Indicates that the group is defined with the details of authentication type OAuth V1.0a.

oauth_v20: Indicates that the group is defined with the details of authentication type OAuth V2.0.

protocol: Indicates that the group is defined with the HTTP transport protocol that the connection will use.

connection: Indicates that the group is defined with the login endpoint to initiate communication with the SaaS provider.

requestHeaders: Indicates that the group is defined with the names of the HTTP request headers to include when sending the login request.

credentials: Indicates that the group is defined with a user account on the SaaS provider that the connection will use to connect to the SaaS provider.

aws_v2: Indicates that the user will use Signature Version 2 to sign Amazon Web Services Query API requests.

aws_v4: Indicates that the user will use Signature Version 4 to sign Amazon Web Services Query API requests.

aws_s3: Indicates that the group is defined for the Amazon S3 authentication scheme and it uses the Access Key and the Secret Key of the client to authenticate the requests.

custom: A user-defined group.

Consumer ID: The 'Consumer Key' issued by the Service Provider and used by the consumer to identify itself to the Service Provider.

Consumer Secret: A secret used by the Consumer to establish ownership of the 'Consumer Key'.

Access Token: A value used by the Consumer to gain access to the Protected Resources on behalf of the User, instead of using the User's Service Provider credentials.

Access Token Secret: A secret used by the Consumer to establish ownership of a given 'Access Token'.

Consumer ID: A 'client identifier' issued to the client to identify itself to the authorization server.

Consumer Secret: A secret matching to the 'client identifier'.

Access Token: A token used by the client to make authenticated requests on behalf of the resource owner.

Instance URL: Optional field, used to specify a runtime host, if applicable. This may be required in some back ends like Salesforce.

Refresh Access Token: Option to refresh the 'Access Token'. OAuth 2.0 access tokens typically have a very short lifetime.When an access token expires, the OAuth profile does not automatically refresh the expired access token. Select this option if you want an expired access token to be refreshed automatically. If you select this option, you must also specify the relevant refresh parameters.The access token is refreshed whenever the session expires. Session expiration is handled according to the setting of the Session Management property in your connection. Note that if Session Management is set to "none", then you must manually modify the access token in the OAuth alias. (The Refresh Access Token option will not be applicable in this case). Default is 'false'. If you want to refresh the 'Access Token' automatically, set Session Management to either 'fixed' or 'idle'. The Timeout value should be based on the backend settings.

Refresh Token: A token used by the client to obtain a new access token without having to involve the resource owner.

Refresh URL: The provider specific URL to refresh an 'Access Token'. This is required when 'Refresh Access Token' is enabled (configured to 'true') and the Refresh URL Request is configured to 'URL Query String' or 'Body Query String'.

Refresh URL Request: Options for sending the parameters in the 'Access Token' refresh request. The options are 'URL Query String', 'Body Query String', and 'Custom ESB Service'. Default is 'Body Query String'.

URL Query String: The refresh request parameters, for example, refresh_token, grant_type, and so on, and their values are sent as query strings in the URL of the POST request.

Body Query String: The refresh request parameters, for example, refresh_token, grant_type, and so on, and their values are sent as query strings in the body of the POST request.

Custom ESB Service: If the backend requires the refresh request in a custom format, for example, requests which need more parameters than the ones specified by OAuth v2.0, or the backend uses some custom way of organizing parameters, or expects some other HTTP method request (other than POST), use the "Custom ESB Service" option.

Element Character Set: The encoding to use for the HTTP request line, headers, etc.

HTTP Content Character Set: The encoding to use for the request message.

HTTP Protocol Version: The HTTP version (HTTP/0.9, HTTP/1.0 or HTTP/1.1. The default value for the connection factory is HTTP/1.1.

User Agent: The value to the connection configuration will send for the User-Agent request header.

Use Expect Continue: If true, use the Expect/Continue HTTP/1.1 handshake and send the Expect request header.

Wait For Continue Time: The number of milliseconds that the connection factory's client connection should wait for a "100 Continue" response from the server.

Strict Transfer Encoding: If true, the connection factory connection raise an exception if the "Transfer-Encoding" header is invalid.

Use Chunking: If true, use HTTP/1.1 chunking, using a chunk size that matches the socket buffer size.

Flow Server Redirects: If true, follow server redirects.

Server Redirect Maximum Tries: Maximum number of times to follow a server redirect.

Server URL: The native provider endpoint target for the connection configuration. The default configuration field provided with the connection factory is cn.providerURL.

Min Pool Connections: The minimum number of socket connections to reserve for a connection configuration alias.

Max Pool Connections: The maximum number of socket connections to reserve for a connection configuration alias.

Connection TimeOut: The number of milliseconds a connection attempt will wait before giving up. (0 will wait indefinitely.)

Socket Read Timeout: The number of milliseconds in which the the client must read a response message from the server. (0 will wait indefinitely.)

Use Stale Checking: If true, the connection factory performs additional processing to test the socket to see if it is still functional each time it is used.

Connection Retry Count: How many times should the connection factory attempt to execute a failed invocation.

Retry On Response Failure: If true, the retry mechanism will be used for failed responses even if the request was sent successfully.

Use TCP NoDelay: If true, do not use Nagles algorithm as a socket optimization technique.

Socket Linger: Determines how quickly a socket should close.

Socket Buffer Size: The size of the read and write socket buffers, in bytes.

Socket Reuse Address: If true, the socket will be reused even if it is in TIME_WAIT due to a previous socket closure.

Session Token: Session token for a stateful session.

Proxy Server Alias: The alias to a web proxy server configuration in Integration Server.

Trust Store Alias: Alias for the Integration Server trust store configuration.

Hostname Verifier: Fully qualified class name that implements the Apache HC org.apache.http.conn.ssl.X509HostnameVerifier interface; helps guard against "man-in-the-middle" attacks. Also set the IS property watt.security.cert. wmChainVerifier.trustByDefault to false and ensure the outbound connector's connection configuration property Hostname verifier is set to its default value, org.apache.http.conn.ssl.StrictHostnameVerifier.

Request Header Names: An array of request header names to include for this connection configuration. The value should be a comma-delimited list of header names; for example Content-Type,SOAPAction.

Request Header Values: An array of request header values to include for this connection configuration. The value should be comma-delimited list of values in the same order as the header names; for example, text/xml,login.

Username: The username credentials for the current connection configuration.

Password: The password credentials for the current connection configuration

Preemptive Auth: If true, basic auth credentials will be included when a request is sent. (It will not wait for a 401 response challenge.)

Authorization Type: The string identifying the authentication protocol scheme to use for the connection configuration.

Domain Name: The domain/security realm for the current connection configuration.

Keystore Alias: Alias for the Integration Server key store configuration.

Client Key Alias: Alias to reference a key inside a key store file.

Signing Algorithm: Explicitly specify the signing algorithm (e.g. HMAC-SHA1 Signatures) used to sign the message.

Access Key: This is a username. It is an alphanumeric text string that uniquely identifies the user who owns the account. No two accounts can have the same AWS Access Key.

Secret Key: This key plays the role of a password. It is called secret because it is assumed to be known only by the owner. When you type the secret key, it is displayed as asterisk or dots.

Region: An area-specific value.

Access Key: This is a username. It is an alphanumeric text string that uniquely identifies the user who owns the account. No two accounts can have the same AWS Access Key.

Secret Key: This key plays the role of a password. It is called secret because it is assumed to be known only by the owner. When you type the secret key, it is displayed as asterisk or dots.

Region: An area-specific value.

Access Key: This is a username. It is an alphanumeric text string that uniquely identifies the user who owns the account. No two accounts can have the same AWS Access Key.

Secret Key: This key plays the role of a password. It is called secret because it is assumed to be known only by the owner. When you type the secret key, it is displayed as asterisk or dots.

Region: An area-specific value.

Server URL (with value cx.serverUrl).

Provider URL (with value cn.providerUrl).

Session Token (with value cn.sessionToken).

Fault String (with value cx.faultString).