This site contains the documentation that is relevant to older WSO2 product versions and offerings.
For the latest WSO2 documentation, visit https://wso2.com/documentation/.

Skip to end of banner Go to start of banner

OAuth2 Token Validation

Skip to end of metadata

Created by Former user, last modified on Jan 06, 2016

Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

This page is under construction

WSO2 Identity Server provides a SOAP service to validate the OAuth2 token it has issued which can be used by the resource server.

The relevant code segment in the our sample webapp wso2 playground2 for OAuth2 can be found here.

Following steps provides the guidance on calling the service using SOAP UI.

Make admin services WSDL accessible.
1. Open the file wso2is-5.1.0/repository/conf/carbon.xml
2. Configure "HideAdminServiceWSDLs" property to false. (This step is just to make get the service WSDL. Once the service WSDL is taken make sure to revert this change to hide admin service WSDLs)
```

        <HideAdminServiceWSDLs>true</HideAdminServiceWSDLs>
```
3. Restart the serverto make the change effective.
Go to SOAP UI and give the WSDL location.
1. Service Name: OAuth2TokenValidationService
2. WSDL location: https://localhost:9443/services/OAuth2TokenValidationService?wsdl
3. Provide the parameters to call the validate method as below.
  1. Since this validation service is an admin service, a valid user name and password needs to be provided in order to consume the service.
  2. Identifier value is the token to be validated.
  3. If user claims are also required while validating the access token, a list of claim URIs can be provided as well.
  4. The response will provide authorized user for the token, if the token is valid and how many more seconds the token is valid. If there was an error occurred while validating the token, it can be sent as the error message.

No labels