Revision 8a41dc10 docs/quick-install-admin-guide.rst
| b/docs/quick-install-admin-guide.rst | ||
|---|---|---|
| 911 | 911 |
astakos since the later has to prevent serving requests by unknown/unauthorized |
| 912 | 912 |
clients. |
| 913 | 913 |
|
| 914 |
Each oauth 2.0 client is identified by a client identifier (client_id). |
|
| 915 |
Moreover, the confidential clients are authenticated via a password |
|
| 916 |
(client_secret). |
|
| 917 |
Then, each client has to declare at least a redirect URI so that astakos will |
|
| 918 |
be able to validate the redirect URI provided during the authorization code |
|
| 919 |
request. |
|
| 920 |
If a client is trusted (like a pithos view) astakos grants access on behalf |
|
| 921 |
of the resource owner, otherwise the resource owner has to be asked. |
|
| 922 |
|
|
| 914 | 923 |
To register the pithos view as an OAuth 2.0 client in astakos, we have to run |
| 915 | 924 |
the following command:: |
| 916 | 925 |
|
Also available in: Unified diff