Solved
Oauth Client Secret Rotation
Hey! We would like to know if the api supports Oauth Client Secret Rotation.
We would like to rotate our application client secret without impacting the current tokens.
Is this supported?
This post is no longer active and is closed to new replies. Need help? Start a new post to ask your question.
Well, Marketo has an identity endpoint to create the short-lived (60-minute) OAUTH bearer access token, however, the Client ID and Client Secret that are required to create this access token need to be added manually, and there's no API for it. You'd need to update this in your properties file (or the place where you have these hard-coded and referenced everywhere from it). Upon switching the Client ID and Client Secret with valid values, you should not see any downtime/issues with creating the access token, so your integration should not get impacted.
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.