This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

usercontext generation by apigeex to backend based on scope for oauth

Posted on 09-12-2023 07:00 AM
raghunathapalle
Bronze 3
Bronze 3
Reply posted on --/--/---- --:-- AM

we have a requirement to generate oauth token to the client application by apigeex based on client credential & scope. During the resource call validation by apigeex, apigeex needs to validate the token & pass the encrypted user_context generated using the creation timestamp, validity timestamp & scope. Is there out of box policy to achieve this funtionality?

1 1 81
Topic Labels
1 REPLY 1

Posted on --/--/---- --:-- AM
kurtkanaskie
Staff
Reply posted on --/--/---- --:-- AM

Yes, if I understand your request correctly, the OAuth V2 policy can incorporate custom attributes during the "GenerateAccessToken" operation. This can be whatever you want, within limitations.

https://cloud.google.com/apigee/docs/api-platform/reference/policies/oauthv2-policy#attributesattrib...

https://cloud.google.com/apigee/docs/api-platform/reference/limits#keys,-developers,-apps

 

0 Likes
Top Solution Authors
View all