Resetting the secret of an authorized application

Resetting the secret key helps protect sensitive data and maintain the integrity of the application's authentication process. If a secret key is compromised or suspected to be at risk, resetting it immediately invalidates the old key and prevents unauthorized access. This action is especially useful when application credentials are exposed, when rotating secrets as part of routine security maintenance, or when transferring access between teams or systems.

  1. Navigate to OS > API Gateway > Authorized Apps in API Gateway.
  2. Select a non-Infor authorized application.
  3. Click Reset Secret.
Note:  Resetting the secret for an authorized application immediately invalidates the previous secret. All integrations and systems that use the old secret lose access until they are updated with the new credentials. To minimize service disruptions, use the Smooth Reset feature. This functionality allows both the old and new secrets to remain valid for a limited time, providing a transition period to update all affected systems and integrations.