[Unity-idm-discuss] OAuth 2.0 Client Credentials Grant - Client Scopes

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

Dear Unity forum,

I have a couple of microservice like software component which supposed 
to cooperate through their respective APIs. These APIs require 
authentication and authorization.

Since we already have Unity running in our infrastructure for user 
authentication, we would also use it for the authorization of these 
software components. The plan is to use OAuth - Client credentials grant.
Originally I wanted to create an OAuth endpoint where I could create a 
client for each software components that requires authorization. My 
problem is that it does not seem to be possible to assign Scopes to 
individual clients, only for the OAuth endpoint. Scopes set on the 
Endpoint level are assigned to all clients underneath. As a result, all 
clients will have the same set of scopes which is not what we want.

Is it possible to assign scopes on a client level?
If not, how should it work? Each client should have its own Identity 
Provider?

Br,
Zoltan

[Unity-idm-discuss] OAuth 2.0 Client Credentials Grant - Client Scopes

Identity management and federations integration

[Unity-idm-discuss] OAuth 2.0 Client Credentials Grant - Client Scopes