OAuth 2.0 (Open Authorization) is standard to provide consented access and restricts actions of what a client application can perform on resources, hosted by other applications, on behalf of the user, without sharing the user's credentials.
OAuth 2.0 has different grant types to address different scenarios and they are the set of steps a client has to perform to get resource access authorization.
In this article, we will see client credentials grant type which is used for non-interactive applications e.g., automated processes, microservices, IoT etc.
Prerequisites:
- If the Oauth APIs are https, we need to upload the certificates in the Web Sphere server (or) whitelist the Maximo server IP by receiving End point to avoid SSL Handshake error
- OAuth 2.0 is supported only from Maximo 7.6.1.3 and MAS. For lower versions of Maximo, we need to customize the End point to make calls to OAuth enabled resources
- Common library script to retrieve token
- A HTTP End point with basic configuration (URL + HTTP_METHOD)
- A calling script to get token from library script, pass on token, URL parameter and header parameter to End point and store the response for more processing
No comments:
Post a Comment