Managing OAuth Client Credentials
Overview
Xilnex Auth implements the OAuth 2.0 protocol to govern service-to-service authorization. Client credentials serve as the authentication identity for backend services, enabling them to authorize, or be authorized by, other services within the platform.
Each set of client credentials is scoped to a single service and must be associated with a Project. A Project acts as an organizational container and may hold multiple sets of client credentials.
Prerequisites
Before accessing the OAuth Client Configuration, ensure the appropriate role permission has been granted by your system administrator.
- Navigate to System Configuration.
- Go to User Roles & Permission.
- Select All Permissions.
- Locate the Developer tab.
- Enable "Allow to access Developer Configuration".
Create New OAuth Client
Step 1 — Create a Project
- Log in to the Xilnex Portal at portal.xilnex.com.
- Navigate to the Developer section.
- Select OAuth Clients under OAuth section.
- Click New to initiate a new Project.
- Complete the Project details and click Save.
| Field | Requirement | Notes |
|---|---|---|
| Project Name | Required | Used as the display identifier for the credential group |
| Description | Optional | Recommended for documentation purposes |
| Created Date | Auto-populated | Defaults to the current date; not editable |
Step 2 — Add OAuth Client to the Project
- Once the Project is saved successfully, under the Project, select Add OAuth Client to create a client credential.
- Complete all required fields and click Save.
- Complete all required fields and click Save.
| Field | Description |
|---|---|
| Client Name | A unique, descriptive name for this set of credentials (between 5 to 50 characters) |
| Application Type | The category of application consuming these credentials |
| App Name | The name of the consuming application (between 5 to 50 characters) |
| App Version | The version identifier of the consuming application |
| Client URI | The application's URI (if applicable) |
| Scopes | The permission scopes required by this client |
Billing - Upon generation of a Client ID and Secret, the application fee will be charged immediately through my registered billing account.
One-Time Secret Visibility - The Client Secret will be displayed only once upon creation. I understand it cannot be retrieved again after this screen is closed. If lost, a new secret must be regenerated, which may affect existing integrations.
Confidentiality Responsibility - User is solely responsible for keeping the Client ID and Client Secret secure and confidential. Sharing or exposing these credentials to unauthorized parties is strictly prohibited.
Misuse Accountability - Any API activity conducted using these credentials is user's responsibility. Xilnex shall not be liable for unauthorized access resulting from credential mishandling.
Revocation Right - Xilnex reserves the right to revoke credentials that are found to be misused, compromised, or in violation of the platform's usage policy.
Edit Project Details
- From the OAuth Client project list, select the Project you wish to modify.
- Update the Project Name and/or Description as needed.
- Click Save to apply changes.
Delete A Project
- From the OAuth Client project list, select the Project you wish to modify.
- Select Delete.
- A confirmation will be prompt.
- Click Confirm to apply changes.
A Project cannot be deleted while it has active Client Credentials. You must remove all associated Client Credentials before the Project itself can be deleted
Edit OAuth Client Details
- Select then Project Name then select the OAuth Client you wish to modify.
- Update the details as needed.
- Click Save to apply changes.
Delete OAuth Client
- Select then Project Name then find the OAuth Client you wish to modify.
- Select More.
- A confirmation message will be shown.
- Enter the Client Name to confirm the action.
- Select Confirm Delete. A message will be shown upon success.
Recent Articles
Managing OAuth Client Credentials
Overview Xilnex Auth implements the OAuth 2.0 protocol to govern service-to-service authorization. Client credentials serve as the authentication identity for backend services, enabling them to authorize, or be authorized by, other services within ...Downloading Store Sample CSV Template File in Xilnex Portal
Overview The Download Store Sample CSV Template File feature in Store Management Import and Log allows staff to download a sample template, containing all necessary fields and proper format for importing data into the system. Preparing imported files ...Importing Store Details in Xilnex Portal
Overview The Import Store Details in Xilnex Portal is a function that allows users to import store data in bulk using CSV files. Users have the option to import the store details either With updating the existing records or Without updating the ...Centralized Secondary Screen Media
Secondary Screen Guidelines Current Setup (Local Media) Currently, the secondary screen relies on a local folder to display media on the POS. Xilnex POS automatically creates a folder named "SecondaryMonitorMedia" on the desktop, or users can ...LiveOrder Dynamic QR - Setup Guide
What is Dynamic QR? Dynamic QR generates a unique, per-session QR code at point of order — typically printed when a table is opened. The customer scans it to place or continues an order tied to that specific table session. Unlike Static QR ...
Popular Articles
Basic - How to create a voucher-coupon
Voucher and coupon definition Voucher can be generated in bulk and can be used once Coupon can only be created one at a time (reusable code) and can be use multiple times Pre-voucher / coupon setup There are 2 things need to be prepared before we can ...Understanding DuitNow QR Payment in ClassicPOS
Introduction This document introduces the DuitNow QR payment feature available in the Xilnex Retail POS, enabling merchants to accept payments conveniently through Malaysia's national QR payment standard. The integration of DuitNowQR simplifies the ...Basic - How to change custom cost to another branch that don’t have custom cost
Change custom cost to another branch that don’t have custom cost 1. Get the item list from the location with custom cost (Item Code, Name, Custom Cost) 2. Make sure the Show Location Price are selected 3. Export the item list in Excel 4. The file ...Intermediate - How to Bill & Post to Sales from Transfer Note
1.0 Purpose A bill is required from transfer note when an inventory transfer involves financial transactions, cost allocation, or compliance with tax and accounting regulations. It is used when stock is moved between outlets that operate as separate ...Basic - How to enable E-Receipt Portal and QR Code Setup on Printing format in Xilnex
Enable E-Receipt Portal Enable the E-receipt functionality Once Enabled, you will be getting the E-Receipt portal link Continue under Theme & Styling, enabled for the E-Invoice (LHDN) You can customize the look and feel of the E-Receipt portal ...