Setting up OAuth 2.0 for a RESTlet Integration
OAuth 2.0 is the preferred authentication method. You should consider using OAuth 2.0 instead of TBA whenever possible.
NetSuite supports OAuth 2.0, a robust authorization framework. OAuth 2.0 enables client applications to use a token to access NetSuite through REST web services and RESTlets. The application accesses the protected resources on behalf of a user who gave an explicit permission for the access. OAuth 2.0 removes the need to store user credentials by RESTlets or REST web services integrations. Use OAuth 2.0 as an alternative to the Token-based Authentication feature. It is more straightforward to implement, because request signing isn't required.
Web Services Only roles are only for access to NetSuite through web services. Roles with the Web Services Only restriction don't work with RESTlets.
For more information, see Getting Started with OAuth 2.0.
OAuth 2.0 allows integrations to comply with any authentication method that's deployed in a NetSuite account for UI login, such as SAML single sign-on, OpenID Connect (OIDC) single sign-on, or two-factor authentication. To enable OAuth 2.0 feature, see Enable the OAuth 2.0 Feature.
OAuth 2.0 introduces two new permissions. For more information, see Set Up OAuth 2.0 Roles.
Administrators and users with the OAuth 2.0 Authorized Applications Management permission can manage all authorized applications in the account. For more information, see Managing OAuth 2.0 Authorized Applications.
You can choose what flow to set up for the OAuth 2.0 feature in your account. For more information, see OAuth 2.0 for Integration Application Developers.