keyrock - lesson 3. applications. how to create oauth2 tokens
TRANSCRIPT
![Page 1: Keyrock - Lesson 3. Applications. How to create OAuth2 tokens](https://reader036.vdocuments.us/reader036/viewer/2022081512/5871e5e41a28ab6a7b8b6faf/html5/thumbnails/1.jpg)
Identity Management - Keyrock GELesson 3. Applications. How to create OAuth2 tokens.
Álvaro Alonso. UPM – DITSecurity Chapter. [email protected], @larsonalonso
![Page 2: Keyrock - Lesson 3. Applications. How to create OAuth2 tokens](https://reader036.vdocuments.us/reader036/viewer/2022081512/5871e5e41a28ab6a7b8b6faf/html5/thumbnails/2.jpg)
Contents
1. Registering an Application
2. Node.js web application example
![Page 3: Keyrock - Lesson 3. Applications. How to create OAuth2 tokens](https://reader036.vdocuments.us/reader036/viewer/2022081512/5871e5e41a28ab6a7b8b6faf/html5/thumbnails/3.jpg)
Main concepts. OAuth2
3
![Page 4: Keyrock - Lesson 3. Applications. How to create OAuth2 tokens](https://reader036.vdocuments.us/reader036/viewer/2022081512/5871e5e41a28ab6a7b8b6faf/html5/thumbnails/4.jpg)
Main concepts. OAuth2
4
Account
![Page 5: Keyrock - Lesson 3. Applications. How to create OAuth2 tokens](https://reader036.vdocuments.us/reader036/viewer/2022081512/5871e5e41a28ab6a7b8b6faf/html5/thumbnails/5.jpg)
Main concepts. OAuth2
5
![Page 6: Keyrock - Lesson 3. Applications. How to create OAuth2 tokens](https://reader036.vdocuments.us/reader036/viewer/2022081512/5871e5e41a28ab6a7b8b6faf/html5/thumbnails/6.jpg)
Main concepts. OAuth2
Login with
![Page 7: Keyrock - Lesson 3. Applications. How to create OAuth2 tokens](https://reader036.vdocuments.us/reader036/viewer/2022081512/5871e5e41a28ab6a7b8b6faf/html5/thumbnails/7.jpg)
Main concepts. OAuth2
7
Web App Keyrock
redirect
request access-token
access-token
access-code
OAu
th L
ibra
ry
Request user info using access-token
![Page 8: Keyrock - Lesson 3. Applications. How to create OAuth2 tokens](https://reader036.vdocuments.us/reader036/viewer/2022081512/5871e5e41a28ab6a7b8b6faf/html5/thumbnails/8.jpg)
Main concepts. OAuth2 and GEs
8
Generic Enabler
Keyrock
Requ
est +
acce
ss-t
oken
Oauth2 flows
access-token
OK + user info (roles)
Web AppO
Auth
Lib
rary
access_token
![Page 9: Keyrock - Lesson 3. Applications. How to create OAuth2 tokens](https://reader036.vdocuments.us/reader036/viewer/2022081512/5871e5e41a28ab6a7b8b6faf/html5/thumbnails/9.jpg)
Main concepts. OAuth2 and GEs
GET https://GE_URL HTTP/1.1Host: GE_hostnameX-Auth-Token: access_token
9
• Calls to other GEs
• Also for integration with Wilma PEP Proxy GE– For securing your REST APIs
![Page 10: Keyrock - Lesson 3. Applications. How to create OAuth2 tokens](https://reader036.vdocuments.us/reader036/viewer/2022081512/5871e5e41a28ab6a7b8b6faf/html5/thumbnails/10.jpg)
Documentation
• Keyrock userguide– http://fiware-idm.readthedocs.io/en/latest/user_guide.html
• How to create OAuth2 tokens– http://fiware-idm.readthedocs.io/en/latest/oauth2.html
• OAuth2 spec– http://oauth.net/2/
![Page 11: Keyrock - Lesson 3. Applications. How to create OAuth2 tokens](https://reader036.vdocuments.us/reader036/viewer/2022081512/5871e5e41a28ab6a7b8b6faf/html5/thumbnails/11.jpg)
Identity Management - Keyrock GELesson 3. Applications. How to create OAuth2 tokens.
Álvaro Alonso. UPM – DITSecurity Chapter. [email protected], @larsonalonso