Running Business Processes and Composite Applications 10.4 | Running Business Processes and Composite Applications | webMethods Integration Server Administrator’s Guide | Configuring OAuth | The Integration Server OAuth Services
 
The Integration Server OAuth Services
Integration Server provides public services for use with OAuth in the WmPublic package.
The following table lists services that you use to authorize a client application to access a resource server.
Service
Description
pub.oauth:authorize
Initiates an authorization request from the client application to the Integration Server authorization server.
pub.oauth:getAccessToken
Requests an access token from the Integration Server authorization server. The request includes the authorization code sent to the redirection URI by the authorization server.
The authorization server validates the request and generates an access token and refresh token (optional). The tokens, along with the client identifier, expiration time, and scope are stored in the authorization server's cache.
Note: The pub.oauth:getAccessToken service is deprecated. Use pub.oauth:getToken instead.
pub.oauth:getToken
Requests an access token from the Integration Server authorization server. The request includes the authorization code sent to the redirection URI by the authorization server.
The authorization server validates the request and generates an access token and refresh token (optional). The tokens, along with the client identifier, expiration time, and scope are stored in the authorization server's cache.
Note: The pub.oauth:getToken service replaces thepub.oauth:getAccessToken and pub.oauth:refreshAccessTokenservices which are deprecated.
pub.ouath:introspectToken
Checks whether an access token or refresh token generated by an Integration Server used as an authorization server is active.
pub.oauth:refreshAccessToken
Sends a request to the Integration Server authorization server to refresh the access token.
Note: The pub.oauth:refreshAccessToken service is deprecated. Use pub.oauth:getToken instead.

pub.oauth:removeExpiredAccessTokens
Removes expired access tokens from the database.
pub.oauth:revokeToken
Revokes a token on an Integration Server authorization server.
For more information about using the Integration Server OAuth services, see webMethods Integration Server Built-In Services Reference .

Copyright © 2019 | Software AG, Darmstadt, Germany and/or Software AG USA, Inc., Reston, VA, USA, and/or its subsidiaries and/or its affiliates and/or their licensors.
Innovation Release