Is there any way to enable usage of access tokens across API Keys

Not applicable

Posting this question on behalf of a customer.

Currently we have a scenario where users might login via OAuth and get an access token using an API Key and then make a transaction request using a different API Key but the same access token.

This call is failing because the access token does not match the API Key used to generate the access token.

Is there any way to enable usage of access tokens across API Keys?

---SF923057---

0 2 290
2 REPLIES 2

No, this will break the oauth model.

1 Access token corresponds to 1 Application(apikey) [and optionally 1 user] only

adas
Participant V

@Aravind Tadakamalla The use-case doesn't make sense and would violate the overall OAuth flow if implemented that way. The tokens are associated to the apikey that is used to generate the token, so it doesn't make sense to bypass that validation while verifying the oauth token. If you can get details from the customer about their actual use-case and why do they need to do it this way, we might be able recommend them a better solution. Please get more details from the customer on this case.