Difference between revisions of "Client flow description"
Pavel.lobko (talk | contribs) |
Pavel.lobko (talk | contribs) |
||
| Line 15: | Line 15: | ||
! Parameter!! Description | ! Parameter!! Description | ||
|- | |- | ||
| − | |[[i2Rest-client command#AUTHMETHOD | Authentication method]] || *OAUTH2C | + | |[[i2Rest-client command#AUTHMETHOD | Authentication method]] || <code>*OAUTH2C</code> must be specified |
|- | |- | ||
|[[i2Rest-client command#COMAND| Command]] || Any of available request type can be choosen | |[[i2Rest-client command#COMAND| Command]] || Any of available request type can be choosen | ||
|- | |- | ||
| − | |[[i2Rest-client command#URL| API endpoint]] || | + | |[[i2Rest-client command#URL| API endpoint]] || Http resource to serve the request |
|- | |- | ||
| − | |[[i2Rest-client command#TOKENS| Tokens storage]] || | + | |[[i2Rest-client command#TOKENS| Tokens storage]] || ??????? |
|- | |- | ||
|[[i2Rest-client command#AUTHID| User/OAuth2 client/device ID]] ||rowspan="2"| Client Credentials to authenticate with authorization server | |[[i2Rest-client command#AUTHID| User/OAuth2 client/device ID]] ||rowspan="2"| Client Credentials to authenticate with authorization server | ||
| Line 27: | Line 27: | ||
|[[i2Rest-client command#AUTHPW| User/OAuth2 client/dev passwd]] | |[[i2Rest-client command#AUTHPW| User/OAuth2 client/dev passwd]] | ||
|- | |- | ||
| − | |[[i2Rest-client command#TOKENURL| OAuth2 token endpoint]] || HTTP resource | + | |[[i2Rest-client command#TOKENURL| OAuth2 token endpoint]] || HTTP resource used by the client to abtain an access token. |
|- | |- | ||
|} | |} | ||
Revision as of 12:44, 10 April 2020
An application can request an access token using only its own credentials, the flow is pretty simple.
The flow consists of the following steps:
(A) The client authenticates with the authorization server and requests an access token from the token endpoint.
(B) The authorization server authenticates the client, and if valid, issues an access token.
So, the next parameters are required
| Parameter | Description |
|---|---|
| Authentication method | *OAUTH2C must be specified
|
| Command | Any of available request type can be choosen |
| API endpoint | Http resource to serve the request |
| Tokens storage | ??????? |
| User/OAuth2 client/device ID | Client Credentials to authenticate with authorization server |
| User/OAuth2 client/dev passwd | |
| OAuth2 token endpoint | HTTP resource used by the client to abtain an access token. |
Back to i2Rest Client
i2Rest client perfoms Oauth 2.0 Client credential flow when *OAUTH2C Authentication method is chosen.
