A simple encapsulated assertion utilizing the Client Credentials grant type in OAuth. This should work well with our own OTK and other providers that utilize this grant. If no values are supplied to the encapsulated assertion it will default to the OTK install and test client id/secret. If the...
195677.zip
CA Technologies is continually working to improve our software and services to best meet the needs of our customers. In order to continue to focus and apply our efforts to help our customers achieve their strategic business initiatives we are announcing feature changes that apply to the...
231180875.docx
PFA attached document on steps needed to make Layer7 with OTK act as OAuth Provider and Ca SSO as OAuth Client. There is some useful info about OAuthStateDataCookie in it as well which is not documented any where.
183135.pdf
This sample policy uses the Return Template Response to Requestor assertion and JS script to parse and replace the hash fragment with a query parameter that can be sent back to the server. Create a new endpoint on your gateway (i.e: /replaceHash) Import the sample policy ...
161302.zip
1 Comment - no search term matches found in comments.
231171393.pdf
Layer 7 OAuth Toolkit User Manual, v2.1.2
145459.pdf
A use case for one of the customers that I was shadowing wanted to be able to use there LDAP to log into the OAuth Manager, and when they went to clients if the user that was logged in was an Admin it would list all client keys in the manager regardless of owner. There are two...
2 attachments
Simplify authentication and authorization for Web and mobile APIs OAuth is fast becoming a key standard for access management with RESTful APIs. OAuth has the advantage of being: Lightweight, for over-the-air mobile applications Open, to prevent vendor lock-in or insecure...
231149402.pdf