OAuth authorization framework 2.0

OAuth authorization framework 2.0

The OAuth authorization framework is an open standard for delegated authorization. Backend web applications (clients) send access requests to an authorization server and are issued credentials (tokens), which are text strings, generally stored in HTTP Headers, that contain user attributes. Tokens issued to clients by the authorization server are based on permissions specified by owner of the request web resources. WebSphere Application Server can play the role of both service provider endpoint and protected resource enforcement endpoint. OAuth 2.0 specifications include the OAuth 2.0 Authorization Framework and the OAuth 2.0 Authorization Framework: Bearer Token Usage.

Subtopics

Features inside WAS OAuth 2.0 services

OAuth 2.0 services

Invoking OAuth 2.0 service

Customizing an OAuth provider

SQL statements for persistent OAuth service

Parent