Oracle Access Manager 11gr2ps3 (OAM 11.1.2.3.0) Federation - What are the Options Available in OAuth, to Perform user Authorization Check Before Issuing Access Token
(Doc ID 2292618.1)
Last updated on NOVEMBER 13, 2023
Applies to:
Oracle Access Manager - Version 11.1.2.3.170418 and laterInformation in this document applies to any platform.
Goal
- Oracle Access Manager 11gr2ps3 (OAM 11.1.2.3.0) Federation - What are the Options Available in OAuth, to Perform user Authorization Check Before Issuing Access Token?
- What are the possible options available in OAM OAuth to perform user authorization check before issuing access token?
- In standard webgate based policy evaluation users can be authorized based on the group membership. Can we do the similar in OAuth?
- If the user is not part of a group in LDAP can we prevent issuing an access token to the user?
For example, every time when integration with an OAuth application will create the corresponding group in LDAP and only authorized users who are eligible to access OAuth application will be the member of that group. When an OAuth client request for access token OAM will evaluate if the user requesting access token is authorized or not then only it will issue the access token
Solution
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Goal |
Solution |
References |