Layer7 API Management

Expand all | Collapse all

Does CA provide an API for OAuth token Management?

Jump to Best Answer
  • 1.  Does CA provide an API for OAuth token Management?

    Posted 06-18-2015 02:01 PM

    We want to provide our customer reps a tool to manage OAuth token for customers.  We do not want the customer reps to use tools that were meant to be used by system administrators.  So I would like to know if CA provides a set of APIs that can be used to manage OAuth tokens?  I'm looking for retrieving tokens issued to a device and having the ability to invalidate an OAuth token etc ... We would build a "widget" that is part of the customer reps software that can easily help do this so that system administrators dont have to do these tasks.  I suspect we can just hit the database where the tokens are stored directly but I would imagine that shouldnt be considered a good practice



  • 2.  Re: Does CA provide an API for OAuth token Management?
    Best Answer

    Posted 06-25-2015 10:02 AM

    Yes, as part of the OAuth implementation (CA API Gateway product) there is an API that lets you programmatically interact with tokens. This can be used to revoke tokens, list tokens, etc.

     

    This API is documented here: https://wiki.ca.com/display/APIMT10/Tokenstore+API

     

    Hope this helps,

     

    -fl



  • 3.  Re: Does CA provide an API for OAuth token Management?

    Posted 06-25-2015 11:45 AM

    This is exactly what I was looking for, thank you.