Oauth2
No edit summary
No edit summary
Line 1: Line 1:
Server to server authentication using Oauth2 and the "Client credentials grant" [https://tools.ietf.org/html/rfc6749#section-4.4 flow] may be supported using these steps.
Server to server authentication using Oauth2 and the "Client credentials grant" [https://tools.ietf.org/html/rfc6749#section-4.4 flow] may be supported using these steps.


1. Set up the call to obtain the "token" using the client secret
1. Set up the call to obtain the "token" using the client secret, storing the result in transient classes as shown to the right


[[File:GetTokenOauth2.PNG]]
[[File:GetTokenOauth2.PNG]]
[[File:TokenModel.PNG]thumb right]


2. Set up a server-side view model to refresh the token before exiry
2. Set up a server-side view model to refresh the token before exiry


2. Pass the "token" in all subsequent calls.
2. Pass the "token" in all subsequent calls.

Revision as of 14:25, 10 March 2019

Server to server authentication using Oauth2 and the "Client credentials grant" flow may be supported using these steps.

1. Set up the call to obtain the "token" using the client secret, storing the result in transient classes as shown to the right

GetTokenOauth2.PNG

[[File:TokenModel.PNG]thumb right]

2. Set up a server-side view model to refresh the token before exiry

2. Pass the "token" in all subsequent calls.

This page was edited more than 11 months ago on 02/10/2024. What links here