https://community.esri.com/t5/arcgis-javascript-maps-sdk-questions/arcgis-enterprise-iwa/m-p/1621931#M87237 <P>To maintain security, your application will need a server side to generate a token. If you place the client id directly in the client side code, anyone could extract the id from the javascript code and access your data in another application. Tokens prevent this by only being useful for a limited time and from the requested IP.</P> Mon, 09 Jun 2025 18:48:59 GMT JeffreyThompson2 2025-06-09T18:48:59Z https://community.esri.com/t5/arcgis-javascript-maps-sdk-questions/arcgis-enterprise-iwa/m-p/1621878#M87234 <P>We have set up IWA for our on premise ArcGIS Enterprise. I'd like to share the web map with secured services to Public (everyone). Is there a way to set up using any one of Oauth methodologies in Javascript to access this ?</P> Mon, 09 Jun 2025 16:24:05 GMT https://community.esri.com/t5/arcgis-javascript-maps-sdk-questions/arcgis-enterprise-iwa/m-p/1621878#M87234 vijaybadugu 2025-06-09T16:24:05Z https://community.esri.com/t5/arcgis-javascript-maps-sdk-questions/arcgis-enterprise-iwa/m-p/1621905#M87235 <P><A href="https://developers.arcgis.com/documentation/security-and-authentication/app-authentication/" target="_blank">https://developers.arcgis.com/documentation/security-and-authentication/app-authentication/</A><BR /><BR />You should be able to do this using App Authentication. This page should outline how it works and links to a tutorial.</P> Mon, 09 Jun 2025 17:57:31 GMT https://community.esri.com/t5/arcgis-javascript-maps-sdk-questions/arcgis-enterprise-iwa/m-p/1621905#M87235 JeffreyThompson2 2025-06-09T17:57:31Z https://community.esri.com/t5/arcgis-javascript-maps-sdk-questions/arcgis-enterprise-iwa/m-p/1621922#M87236 <P>Do we need to set up a web server application to pass these client Id and secret between portal and web server application?</P> Mon, 09 Jun 2025 18:37:41 GMT https://community.esri.com/t5/arcgis-javascript-maps-sdk-questions/arcgis-enterprise-iwa/m-p/1621922#M87236 vijaybadugu 2025-06-09T18:37:41Z https://community.esri.com/t5/arcgis-javascript-maps-sdk-questions/arcgis-enterprise-iwa/m-p/1621931#M87237 <P>To maintain security, your application will need a server side to generate a token. If you place the client id directly in the client side code, anyone could extract the id from the javascript code and access your data in another application. Tokens prevent this by only being useful for a limited time and from the requested IP.</P> Mon, 09 Jun 2025 18:48:59 GMT https://community.esri.com/t5/arcgis-javascript-maps-sdk-questions/arcgis-enterprise-iwa/m-p/1621931#M87237 JeffreyThompson2 2025-06-09T18:48:59Z