FIWARE Academy Courses
Identity Management - Keyrock GE
Lesson 3. Applications. How to create OAuth2 tokens.
https://edu.fiware.org/course/view.php?id=79
Álvaro Alonso
UPM-DIT. Security Chapter
FIWARE Academy
https://edu.fiware.org
http://fiware.org
7. Main concepts. OAuth2
7
Web App
Keyrock
redirect
request access-token
access-token
access-code
OAuthLibrary
Request user info using access-token
8. Main concepts. OAuth2 and GEs
8
Generic Enabler
Keyrock
Request+
access-token
Oauth2 flows
access-token
OK + user info (roles)
Web App OAuthLibrary
access_token
9. Main concepts. OAuth2 and GEs
GET https://GE_URL HTTP/1.1
Host: GE_hostname
X-Auth-Token: access_token
9
• Calls to other GEs
• Also for integration with Wilma PEP Proxy GE
– For securing your REST APIs
10. Documentation
• Keyrock userguide
– http://fiware-idm.readthedocs.io/en/latest/user_guide.html
• How to create OAuth2 tokens
– http://fiware-idm.readthedocs.io/en/latest/oauth2.html
• OAuth2 spec
– http://oauth.net/2/
11. Identity Management - Keyrock GE
Lesson 3. Applications. How to create OAuth2 tokens.
Álvaro Alonso. UPM – DIT
Security Chapter. FIWARE
aalonsog@dit.upm.es, @larsonalonso