'Re: [Dev] Enable client_id and client_secret based authentication to Introspection endpoint'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       esb-java-dev
Subject:    Re: [Dev] Enable client_id and client_secret based authentication to Introspection endpoint
From:       Pubudu Gunatilaka <pubudug () wso2 ! com>
Date:       2019-03-13 4:57:17
Message-ID: CANXqWhnraxo+5QPebo834hopR245Kg-LJry3zk-ZG1UpVTC8wQ () mail ! gmail ! com
[Download RAW message or body]

[Attachment #2 (multipart/alternative)]

Hi Isuranga,

On Tue, Mar 12, 2019 at 12:30 PM Isuranga Perera <isuranga@wso2.com> wrote:

> Hi all
>
> I'm working on the improvement of client authentication for OAuth2
> Introspection endpoint[1]. Currently, it supports authentication via basic
> authentication and bearer token authentication.
>
> In this improvement, we're going to introduce authentication via client ID
> and secret.
>

Do any valid client ID and secret in the system do the authentication or it
has to be the relevant token's client ID and secret?

Thank you!
-- 
*Pubudu Gunatilaka*
Committer and PMC Member - Apache Stratos
Associate Technical Lead
WSO2, Inc.: http://wso2.com
mobile : +94774078049 <%2B94772207163>

[Attachment #5 (text/html)]

<div dir="ltr"><div>Hi Isuranga,</div><br><div class="gmail_quote"><div dir="ltr" \
class="gmail_attr">On Tue, Mar 12, 2019 at 12:30 PM Isuranga Perera &lt;<a \
href="mailto:isuranga@wso2.com">isuranga@wso2.com</a>&gt; wrote:<br></div><blockquote \
class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid \
rgb(204,204,204);padding-left:1ex"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div \
dir="auto">Hi all<div dir="auto"><br></div><div dir="auto">I&#39;m working on the \
improvement of client authentication for OAuth2 Introspection endpoint[1]. Currently, \
it supports authentication via basic authentication and bearer token authentication.  \
</div><div dir="auto"><br></div><div dir="auto">In this improvement, we&#39;re going \
to introduce authentication via client ID and \
secret.</div></div></div></div></div></blockquote><div><br></div><div>Do  any valid \
client ID and secret in the system do the authentication or it has to be the relevant \
token&#39;s client ID and secret?</div><div><br></div><div>Thank you!</div></div>-- \
<br><div dir="ltr" class="gmail_signature"><div dir="ltr"><div><div \
dir="ltr"><div><div dir="ltr"><div><div dir="ltr"><div><div dir="ltr"><div \
dir="ltr"><font color="#888888"><span \
style="font-size:13px;background-color:rgb(255,255,255)"><span \
style="color:rgb(68,68,68)"><span style="background-color:rgb(255,255,255)"><font \
style="font-family:arial" face="arial, helvetica, sans-serif"><b>Pubudu \
Gunatilaka</b></font></span></span></span></font></div><div dir="ltr"><span \
style="color:rgb(153,153,153);font-size:x-small">Committer and PMC Member - Apache \
Stratos</span><br></div><div><font color="#888888"><span \
style="font-size:13px;background-color:rgb(255,255,255)"><div \
style="font-family:arial,sans-serif;color:rgb(51,51,51)"><div \
style="font-family:arial"><span style="border-collapse:collapse"><div \
style="color:rgb(34,34,34);font-family:arial,sans-serif;font-size:12.8px"><span \
style="color:rgb(153,153,153)"><font size="1">Associate Technical \
Lead</font></span></div><div \
style="color:rgb(34,34,34);font-family:arial,sans-serif;font-size:12.8px"><span \
style="color:rgb(153,153,153)"><font size="1">WSO2, Inc.:<a href="http://wso2.com" \
target="_blank"> http://wso2.com</a></font></span></div><div \
style="color:rgb(34,34,34);font-family:arial,sans-serif;font-size:12.8px"><span \
style="color:rgb(153,153,153);font-size:x-small">mobile :  </span><a \
href="tel:%2B94772207163" value="+94772207163" \
style="font-size:x-small;color:rgb(17,85,204)" \
target="_blank">+94774078049</a></div><font face="arial, helvetica, sans-serif"><a \
value="+94718279777"><span \
style="background-color:rgb(255,255,255)"><br></span></a></font></span></div></div></s \
pan></font></div></div></div></div></div></div></div></div></div></div></div></div>

_______________________________________________
Dev mailing list
Dev@wso2.org
http://wso2.org/cgi-bin/mailman/listinfo/dev

[prev in list] [next in list] [prev in thread] [next in thread] 