Versions Compared

Old Version 2

changes.mady.by.user Former user

Saved on

compared with

New Version 3

changes.mady.by.user Former user

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

When an application access token is generated, an OAuth client is created underneath. The consumer key and consumer secret shown under a key type actually belongs to the OAuth client.  In previous releases of API Manager, the only way to create an OAuth client was through the API Store. However, there There can be situations where an OAuth client is created elsewhere, but needs to be associated with an application in the API Store. For instance, in an organisation organization where WSO2 Identity Server is used as the authoritative server, OAuth clients may only be created through the Identity Server. Similarly, when a third party OAuth provider is used, users might want to use previously created OAuth clients with the API Manager.

...

The steps below describe how to provision OAuth clients created outside the API Store into the API Manager:

...

In this example, we use a standalone API Manager instance and do this via the management console of the API Manager. 

Info
In a setup where WSO2 Identity Server is used as the Key Manager, this step is performed in the Identity Server.

  1. Log in to the APIM management console (https://<Server Host>:9443/carbon) and click Add under Service Providers.
    Image Modified

  2. Give a name for the service provider and click Register.
  3. Click Configure under Inbound Authentication Configuration > OAuth/OpenId Connect Configuration to add a new OAuth client.
  4. Provide a callback URL.
    If you do not have a callback URL, you can clear unselect the Code and Implicit authorization grant types type checkboxes and add the OAuth client.
    You Now, you have now created the OAuth client and are provided with the OAuth client key and OAuth client secret.

  5. Next, enable the option to provide out-of-band keys by opening the <APIM_HOME>/repository/deployment/server/jaggeryapps/store/site/conf/site.json file and changing the "mapExistingAuthApps" setting to true.

    Code Block
    "mapExistingAuthApps" : true
  6. Log in to the API Store.
  7. In the My Subscriptions page, notice that you now see a Provide Keys button for your application.
  8. Click the Provide Keys button, paste the consumer key and consumer secret pair and click Save

    You have successfully provisioned an out-of-band OAuth client.