Table of Contents

Search

  1. Preface
  2. Introduction to API Manager
  3. Managed API management
  4. Access policies
  5. API-specific policies
  6. Managed API groups
  7. Authentication and authorization
  8. API Microgateway Service
  9. Analytics

API Manager Guide

API Manager Guide

OAuth 2.0 authentication and authorization

OAuth 2.0 authentication and authorization

You can enable OAuth 2.0 authentication for managed APIs that invoke a Cloud Application Integration process that uses basic authentication.
OAuth 2.0 is a protocol for authorization that provides specific authorization flows for web applications and helps in the secure transmission of information between API consumers and web services such as Informatica Cloud Application Integration service APIs.
API Manager supports the client credentials grant type for OAuth 2.0 authentication.
Enabling OAuth 2.0 authentication
To enable OAuth 2.0 authentication, you perform the following tasks:
  1. Create an OAuth 2.0 client. Specify credentials of an organization user with access to run managed APIs, select managed APIs or managed API groups that can use the client for authentication, and generate client credentials.
  2. Send the following details to consumers of the managed APIs that the client applies to:
    • Informatica Intelligent Cloud Services OAuth 2.0 server URL.
    • Client credentials.
Invoking a managed API where OAuth 2.0 authentication is enabled
To invoke a managed API where OAuth 2.0 authentication is enabled, API consumers perform the following tasks:
  1. Authenticate against the Informatica Intelligent Cloud Services OAuth 2.0 server and use the OAuth 2.0 client credentials to generate an OAuth 2.0 authorization token.
  2. Use the OAuth 2.0 authorization token to invoke the API.