OAuth 2.0 services

OAuth 2.0 services

WebSphere Application Server OAuth services include both:

OAuth authorization service Provides OAuth 2.0 protocol endpoint URLs. Responsible for client authorization and token issuing.
Web resource authorization decision service Combination of standard WAS J2EE security and WAS trust association interceptor (TAI). When a client accesses a J2EE secured web resource, the OAuth TAI intercepts the request, validates the OAuth token, and maps the OAuth token to the WAS platform security subject. From then on, the client is assessed and authorized based on the authenticated subject.

See:

Define an OAuth service provider

Create an OAuth service provider

Configure auto consent

Enabling your system to use the OAuth 2.0 feature

OAuth endpoint URLs

Registering OAuth clients

OAuth trust association interceptor (TAI) custom properties

OAuth command group for the AdminTask object

OAuth MBeans

Dynamic cache objects for OAuth

Parent

OAuth authorization service	Provides OAuth 2.0 protocol endpoint URLs. Responsible for client authorization and token issuing.
Web resource authorization decision service	Combination of standard WAS J2EE security and WAS trust association interceptor (TAI). When a client accesses a J2EE secured web resource, the OAuth TAI intercepts the request, validates the OAuth token, and maps the OAuth token to the WAS platform security subject. From then on, the client is assessed and authorized based on the authenticated subject.