Oracle® Fusion Middleware
Part 1. API Gateway as an OAuth server
Sidebar
Prev
|
Next
Part 1. API Gateway as an OAuth server
Contents
Introduction to API Gateway OAuth 2.0 server
Overview
OAuth 2.0 concepts
OAuth 2.0 example workflow
API Gateway OAuth features
API Gateway OAuth scopes
OAuth 2.0 authentication flows
Further information
Set up API Gateway OAuth 2.0
Overview
Enable OAuth 2.0 management
Import client applications
Migrate client applications
Upgrade API Gateway configuration
Manage OAuth 2.0 client applications
Overview
Manage registered client applications
Run the sample client applications
Manage access tokens and authorization codes
Manage OAuth scopes
Relational database-backed Client Application Registry
Generate a certificate and private key for a client application
API Gateway OAuth 2.0 authentication flows
Overview
Authorization code (or web server) flow
Implicit grant (or user agent) flow
Resource owner password credentials flow
Client credentials grant flow
JWT flow
Revoke token
Token information service
Contents
Search
API Gateway as an OAuth server
Introduction to API Gateway OAuth 2.0 server
Overview
OAuth 2.0 concepts
OAuth 2.0 example workflow
API Gateway OAuth features
API Gateway OAuth scopes
OAuth 2.0 authentication flows
Further information
Set up API Gateway OAuth 2.0
Overview
Enable OAuth 2.0 management
Enable OAuth endpoints
Import client applications
Import the sample client applications
Migrate client applications
Migrate existing client applications
Upgrade API Gateway configuration
Manage OAuth 2.0 client applications
Overview
Manage registered client applications
Access the Client Application Registry web interface
Run the sample client applications
Manage access tokens and authorization codes
Store in a cache
Store in a relational database
Store in Cassandra
Manage OAuth scopes
Relational database-backed Client Application Registry
OAuth relational database schemas
Generate a certificate and private key for a client application
API Gateway OAuth 2.0 authentication flows
Overview
Authorization code (or web server) flow
Obtain an access token
Run the sample client
Further information
Implicit grant (or user agent) flow
Obtain an access token
Run the sample client
Further information
Resource owner password credentials flow
Request an access token
Handle the response
Run the sample client
Further information
Client credentials grant flow
Request an access token
Handle the response
Run the sample client
Further information
JWT flow
Create a JWT bearer token
Request an access token
Handle the response
Run the sample client
Further information
Revoke token
Run the sample client
Response codes
Further information
Token information service
Run the sample client
Response codes
Further information
OAuth server filters
Get access token information
Overview
Token settings
Monitoring settings
Advanced settings
Get access token using authorization code
Overview
Application validation settings
Access token settings
Monitoring settings
Get access token using client credentials
Overview
Application validation settings
Access token settings
Monitoring settings
Get access token using JWT
Overview
Application validation settings
Access token settings
Monitoring settings
Get access token using SAML assertion
Overview
SAML assertion validation settings
Access token settings
Monitoring settings
Consume authorization requests
Overview
Validation settings
Authorization code settings
Access token settings
Monitoring settings
Authorize transaction
Overview
Template settings
Authorization code settings
Access token settings
Monitoring settings
Refresh access token
Overview
Application validation settings
Access token settings
Monitoring settings
Get access token using resource owner credentials
Overview
Application validation settings
Access token settings
Monitoring settings
Revoke token
Overview
Revoke token settings
Monitoring settings
Validate access token
Overview
General settings
Response codes
OAuth 2.0 server message attributes
Overview
accesstoken methods
accesstoken.authn methods
authzcode methods
oauth.client.details methods
Example of querying a message attribute
OAuth scope attributes
OAuth SAML Bearer
API Gateway as an OAuth client
Introduction to API Gateway OAuth 2.0 client
Overview
API Gateway OAuth client features
OAuth 2.0 example client workflow
Set up API Gateway OAuth 2.0 client
Overview
Configure OAuth 2.0 client applications
Overview
Add application
Configure scopes
Configure SAML bearer
Configure JWT
Configure advanced settings
Add OAuth 2.0 provider
Creating a callback URL listener
OAuth client filters
Retrieve OAuth client access token from token storage
Overview
General settings
Authorize client with server
Overview
General settings
SSL settings
Additional settings
Refresh an OAuth client access token
Overview
General settings
SSL settings
Additional settings
OAuth 2.0 client message attributes
Overview
oauth.client.accesstoken methods
oauth.client.application methods
Search
Search Highlighter (On/Off)