Layer7 API Management

Hi, I am looking for a sample / reference application to support a PoC/demo of OATH/OpenID Connect capability on API Gateway 8.3 with OTK 3.0 and MAG 2.x. Would probably need source/project with hints how to build and run. Your help will be greatly appreciated.

Sorry for typo - should be OAuth2.0  instead of OATH

Only MAG 2.3 is compatible.

I don't know if this helps  you, or I entirely understand your requirements, but if  you sign up for a Salesforce developer account you can run OpenIDConnect from there.  Under the developer home page they have "Security Controls", "Auth Providers" and you can create an OpenIDConnect provider from there and connect to your OTK, using the built in 'userinfo' service to demo it.  Basically it'll give you a url you can plug into your browser and ultimately return information from your identity provider via the OTK.  Takes some configuration, and of course you need a working OTK, but you should be able to do it without programming.

Unfortunately, aside from the basic idea I'm not sure I can help you.  We don't use MAG, we're running 9.1 of the gateway and I think 3.3 of the OTK, and we have a somewhat customized implementation of OTK.  So we do things a little differently here, but the Salesforce auth provider should work with the standard toolkit.  In general you have to register the Salesforce client in OAuth Manager, then plug that key and secret into the Salesforce client setup along with /authorize, /token and /userinfo OTK url's to test it.

You can find test clients installed with the OTK for OAuth 2.0 (and 1.0) and OpenID Connect that include prose on how to obtain access tokens by authorization grant type and that allow you to interact directly with the authorization and token endpoints for testing and demonstration purposes.

Run the OAuth 2.0 Test Client - CA API Management OAuth Toolkit - 3.0 - CA Technologies Documentation 

You can examine the client side code in the test clients (they are web applications) if you are looking for client code samples, or alternatively, you can also use the CA Developer Portal (though you haven't mentioned this product) to generate sample client side code by selecting OAuth as the method for authentication.

Hope this is helpful.

Hi alex.golod.1

The below should help with the MAG part.  Some may reference different versions of MAG but I think this will get you moving in the right direction.

ANDROID

[MAG 3.0.01] - Running the Android SDK Sample App 

MAG Android SDK Code Samples.zip 

MAG Android SDK presentation.pptx 

MAG Android SDK session 1 - Introduction.mp4 

MAG Android SDK session 2 - Android Framework and MAG.mp4 

MAG Android SDK session 3 - Hello World on Android.mp4 

MAG Android SDK session 4 - MAG configuration.mp4 

MAG Android SDK session 5 - Accessing protected endpoint.mp4 

MAG Android SDK session 6 - Single Sign On.mp4 

MAG Android SDK session 7 - Social Login.mp4 

MAG Android SDK session 8 - Login dialog customization.mp4 

MAG Android SDK session 9 - Enterprise Browser.mp4 

IOS

MAG iOS SDK Presentation.pptx 

MAG iOS SDK Sample App.ziplin 

MAG iOS SDK session 1 - Introduction.mp4 

MAG iOS SDK Session 2 - iOS Framework and MAG iOS SDK.mp4 

MAG iOS SDK Session 3 - Hello World App on iOS.mp4 

MAG iOS SDK Session 4 - Setup and Configuration.mp4 

MAG iOS SDK Session 5 - SDK initialization and configuration.mp4 

MAG iOS SDK Session 6 - Hands-On.mp4 

MAG iOS SDK Session 7 - Configure Social LogIn.mp4 

MAG iOS SDK Session 8 - Custom Login Dialog.mp4 

MAG iOS SDK Session 9 - Running Sample Apps.mp4 

Regards,

Joe