Layer7 API Management

  • Private Community
 View Only

  • 1.  Does CA provide an API for OAuth token Management?

    Posted Jun 18, 2015 02:01 PM

    We want to provide our customer reps a tool to manage OAuth token for customers.  We do not want the customer reps to use tools that were meant to be used by system administrators.  So I would like to know if CA provides a set of APIs that can be used to manage OAuth tokens?  I'm looking for retrieving tokens issued to a device and having the ability to invalidate an OAuth token etc ... We would build a "widget" that is part of the customer reps software that can easily help do this so that system administrators dont have to do these tasks.  I suspect we can just hit the database where the tokens are stored directly but I would imagine that shouldnt be considered a good practice



  • 2.  Re: Does CA provide an API for OAuth token Management?
    Best Answer

    Posted Jun 25, 2015 10:02 AM

    Yes, as part of the OAuth implementation (CA API Gateway product) there is an API that lets you programmatically interact with tokens. This can be used to revoke tokens, list tokens, etc.

     

    This API is documented here: https://wiki.ca.com/display/APIMT10/Tokenstore+API

     

    Hope this helps,

     

    -fl



  • 3.  Re: Does CA provide an API for OAuth token Management?

    Posted Jun 25, 2015 11:45 AM

    This is exactly what I was looking for, thank you.