We want to provide our customer reps a tool to manage OAuth token for customers. We do not want the customer reps to use tools that were meant to be used by system administrators. So I would like to know if CA provides a set of APIs that can be used to manage OAuth tokens? I'm looking for retrieving tokens issued to a device and having the ability to invalidate an OAuth token etc ... We would build a "widget" that is part of the customer reps software that can easily help do this so that system administrators dont have to do these tasks. I suspect we can just hit the database where the tokens are stored directly but I would imagine that shouldnt be considered a good practice
Yes, as part of the OAuth implementation (CA API Gateway product) there is an API that lets you programmatically interact with tokens. This can be used to revoke tokens, list tokens, etc.
This API is documented here: https://wiki.ca.com/display/APIMT10/Tokenstore+API
Hope this helps,
This is exactly what I was looking for, thank you.