GETTING STARTED OAUTH 2.0
OAuth2 allows a space administrator to securely give 3rd party applications access to the information contained within their space. Similar to how some cars allow you to issue a special key to a 3rd party (eg car service agent) that allows them to start the car, but not open the boot etc. It is a natural extension to the mydigitalstructure Other User Access functionality. The difference being that rather than you having to generate the access rights and associated token – the 3rd party application can initiate it and with your authentication, have the access token securely returned to the 3rd party application for storage and future use. During this process you can confirm what they have access to – with the understanding that you can disable the access at any time.
Allowing a specialist eNews website to access your contacts data. Assumptions: Example Steps as User:
As a developer (assuming you have signed up and have a user id): Step 1: You need register your post access or deny redirect URI using: /ondemand/setup/?method=SETUP_OAUTH2_URI_MANAGE&uri=[your uri] You will be returned the client_id parameter that you need store for later use. Step 2: Work out the scope of the access you need eg the method calls you want to be able to do. &scope=endpoint_contact,endpoint_news Scope options:
Step 2: Direct the user from your site to /oauth2/?client_id=[your clientid]&scope=[your scope]&state=[optional state information] – the user then logs on and can see the scope of your request. Step 3: If the user accepts your request then a redirect is sent to your specified url with the &code= appended. Step 4: Authenticate with your credentials and the code for final authorisation using: /ondemand/core/?method=CORE_OAUTH2_MANAGE&code=[your code] A token will then be returned to you that you can store and use to access the users space, as &access_token=
|
|
|
|
