stackoom
  简体   繁体   中英

WSO2 API Manager - Can we limit supported OAuth2 Grant Type for an API

 原文  2016-01-28 07:30:06       wso2/ wso2-am

Question

Refer to WSO2AM documentation , I understand that we can set the authentication type for each API to one of following values.

  1. None
  2. Application
  3. Application User
  4. Application and Application User

However, is it possible to specify that an API will support only a specific OAuth2 grant type?

For example, I want an API to allow only "Authorization Code" and "Implicit" , but not allow "Password" grant types.

Thank you very much in advanced.

1 answers

solution1
 0 ACCPTED  2016-02-18 09:58:11

Thanks to @harsha89 for the solution. This can be configured in carbon admin console under Service Providers -> Inbound Authentication Configuration -> OAuth/OpenID Configuration, then click "Edit".

在此处输入图片说明

在此处输入图片说明

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question WSO2 Api Manager - bypass sign in page when invoking API (oauth2 authorization grant code) How to implement OAuth2 authorization with WSO2 API Manager CORS is not working on oAuth2 UserInfo endpoint in WSO2 API Manager oAuth2 - WSO2 API Manager and Identity Server Integration Accessing a oauth2 secured service via WSO2 API Manager Oauth resource owner password credentials grant type with WSO2 API manager when sso is setup with identity server Generating OAuth Token of Client Credential Grant Type Fails - WSO2 API Manager 1.7.0 SAML extension grant type configuration of wso2 api manager wso2 api manager 1.7 /oauth2/userinfo api throws NullPointerException How can I test the grant type authorization code for oauth2 on WSO2?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM