Layer7 API Management

 View Only
  • 1.  OTK - OAuth Access and Refresh Tokens - Custom lifetime

    Posted Mar 13, 2020 07:55 AM
    Hi Community,

    How to configure custom lifetime for  OTK OAuth access and refresh tokens without disturbing the original/native policies/fragments?

    Was reading from here for doing the same.. https://techdocs.broadcom.com/content/broadcom/techdocs/us/en/ca-enterprise-software/layer7-api-management/api-management-oauth-toolkit/4-3/customizing-the-oauth-toolkit/configure-token-lifetime-properties.html

    But still need some help in achieving this.


  • 2.  RE: OTK - OAuth Access and Refresh Tokens - Custom lifetime

    Broadcom Employee
    Posted Mar 13, 2020 07:57 AM
    Hi Pavansai,

    The doc you provided uses the # fragments so the base policies do not need changing. Are you running into issues with this?
    Additionally, if you are looking to make changes on a per client basis you may want to look at this:

    https://techdocs.broadcom.com/content/broadcom/techdocs/us/en/ca-enterprise-software/layer7-api-management/api-management-oauth-toolkit/4-3/customizing-the-oauth-toolkit/client-specific-customization.html

    Regards,
    Joe



  • 3.  RE: OTK - OAuth Access and Refresh Tokens - Custom lifetime

    Posted Mar 16, 2020 02:28 AM
    Hi Joe,

    Yes am looking for a configuration that's client specific (different lifetimes,  diff custom attributes with token) etc.,

    But, am not able to access this https://<yourgatewayURL>:8443/instanceModifier/oauth/manager 
    This page isn't working host didn't send any data.
    ERR_EMPTY_RESPONSE

    Is there any possible way to configure this based on a client_name or client_id or any identification parameter to get custom token values?



  • 4.  RE: OTK - OAuth Access and Refresh Tokens - Custom lifetime
    Best Answer

    Posted Mar 16, 2020 05:50 AM
    If this is your only installation that instanceModifier is optional else instanceModifier is the name or the path you specified during your OTK toolkit Installation
    https://<yourgatewayURL>:8443/<instanceModifier>/oauth/manager

    The URL is 
    https://<yourgatewayURL>:8443/oauth/manager or
    https://<yourgatewayURL>:8443/PPE/oauth/manager
    where PPE is the instanceModifier you specified during installation

    ------------------------------
    Pre-Sales Consultant
    CA Southern Africa
    ------------------------------