Authorization Server

Prerequisites

The reader of this information should be familiar with:

  • Representational state transfer (REST)

The Authorization Server is a service provider in  that generates OAuth2 based access token to be used for calling REST APIs hosted on the REST Server agent that requires the OAuth2 authorization process. The Authorization Server utilizes Service Context to run and can be configured to store provisioned scopes and registered clients either in file-based storage or database storage. We currently only support Oracle and PostgreSQL database for the database storage.

Preparing the Authorization Server requires a few steps, as described in 2.1 Enabling Authorization Server

Client Credentials Only

The Authorization Server supports only the OAuth2 "client_credentials" grant type currently.