[
https://issues.apache.org/jira/browse/STRATOS-91?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13818830#comment-13818830
]
Pradeep Fernando commented on STRATOS-91:
-----------------------------------------
The explanation of the implementation.
1. OAuth server issues a token.
2. Clients sends in the request with Oauth token
3. Interceptor extracts the token and calls the validation endpoint of the
Oauth server.
4. At this point the interceptor sends in additional details as well.. (scope
params)
5. The validation happens at the Oauth server.
The current implementation is only the interceptor. This interceptor is written
targeting Oauth server, WSO2 IS.
> OAuth based authentication for REST APIs
> ----------------------------------------
>
> Key: STRATOS-91
> URL: https://issues.apache.org/jira/browse/STRATOS-91
> Project: Stratos
> Issue Type: New Feature
> Reporter: Pradeep Fernando
> Attachments: 0002-OAuth-authentication-authorization.patch
>
>
> provide Oauth based authentication for RESTful admin services
--
This message was sent by Atlassian JIRA
(v6.1#6144)
