Uploaded image for project: 'Red Hat 3scale API Management'
  1. Red Hat 3scale API Management
  2. THREESCALE-774

Configure allowed OAuth flows per Service

    XMLWordPrintable

    Details

      Description

      Currently when Zync creates a client in RH SSO after an application was created in 3scale, the information about the OAuth flows that should be enabled is not passed, so the default is used – only Standard Flow (Authorization Code flow) enabled.

      If the requirement is to have another flow enabled instead (e.g. Client Credentials flow), this needs to be handled manually by enabling the corresponding flows via API or UI of the RH SSO admin console.

      The request is to be able to configure allowed OAuth flows on the 3scale service (done by the API provider in the admin portal), so when a new application is created, the corresponding flows are enabled on the client on RH SSO side:

      • standardFlowEnabled (Authorization Code flow)
      • implicitFlowEnabled
      • serviceAccountsEnabled (Client Credentials flow)
      • directAccessGrantsEnabled (Resource Owner Password Credentials flow)

      Comment from Michal Cichra - There is a workaround how to configure Zync to configure supported flows for all services and applications: https://github.com/3scale/zync/pull/100

      Specification: https://docs.google.com/document/d/1-8ZcenxDWe4l5t8WvqLns2tckkqiYPPDdRQp6-N0yOM/edit?ts=5c6ff2cd

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              Unassigned Unassigned
              Reporter:
              mayorova Daria Mayorova
              Votes:
              1 Vote for this issue
              Watchers:
              11 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: