Documentationbreadcrumb arrow Pluginsbreadcrumb arrow Infinity data sourcebreadcrumb arrow Advanced featuresbreadcrumb arrow OAuth2 tokens
Open source Enterprise Grafana Cloud

OAuth2 token customization

The Infinity data source supports OAuth2 authentication with advanced customization options for token headers and token templates. This feature allows you to customize how OAuth2 access tokens are sent in HTTP requests, accommodating APIs that don’t follow standard OAuth2 patterns.

When to use custom token configuration

By default, OAuth2 authentication sends the access token in the standard format:

http 
Authorization: Bearer <access_token>

Use custom token configuration when your API requires:

  • A different header name (for example, X-API-Key or X-Access-Token)
  • A custom token format with different prefixes
  • Access to the refresh token or token type in the header

AuthHeader option

The authHeader field specifies a custom header name for the OAuth2 token.

SettingDescription
DefaultAuthorization
TypeString

Example values:

  • X-API-Key
  • X-Access-Token
  • Bearer-Token

TokenTemplate option

The tokenTemplate field specifies a custom format for the token value using placeholders.

SettingDescription
DefaultBearer ${__oauth2.access_token}
TypeString with placeholders

Available placeholders:

PlaceholderDescription
${__oauth2.access_token}The OAuth2 access token
${__oauth2.refresh_token}The OAuth2 refresh token (when available)
${__oauth2.token_type}The OAuth2 token type returned by the server

Example templates:

TemplateResult
Bearer ${__oauth2.access_token}Bearer abc123 (default)
Token ${__oauth2.access_token}Token abc123
${__oauth2.access_token}abc123 (no prefix)
${__oauth2.token_type} ${__oauth2.access_token}Dynamic prefix from token response
ApiKey ${__oauth2.access_token}ApiKey abc123

Configuration example

To configure custom OAuth2 token handling, add the following to your data source provisioning YAML:

YAML 
apiVersion: 1
datasources:
  - name: Custom API
    type: yesoreyeram-infinity-datasource
    jsonData:
      oauthPassThru: false
      oauth2:
        oauth2_type: client_credentials
        client_id: your-client-id
        token_url: https://auth.example.com/oauth/token
        authHeader: X-API-Key
        tokenTemplate: "ApiKey ${__oauth2.access_token}"
    secureJsonData:
      oauth2ClientSecret: your-client-secret

This configuration sends requests with:

http 
X-API-Key: ApiKey abc123

Instead of the default:

http 
Authorization: Bearer abc123

Configure in the UI

  1. In the data source configuration, expand Authentication.
  2. Select OAuth2 as the authentication method.
  3. Select your OAuth2 type (for example, Client Credentials).
  4. Fill in the required OAuth2 fields (Client ID, Client Secret, Token URL).
  5. Expand Customize OAuth2 token (Advanced).
  6. In the Custom Token Header field, enter your custom header name.
  7. In the Custom Token Template field, enter your custom token format using placeholders.
  8. Click Save & test.