unity-idm-discuss

[Unity-idm-discuss] [ EUDAT ] - Unity as OAuth Resource Provider

[Gonçalo B. <gon...@fc...>]

Hi 

 

Im trying to create a OAuth 2.0 client (For those who are familiar with
eudat – im trying to make B2SHARE automatically communicate with B2ACCESS ).

How to I get the secret key  ? (like its done in google or facebook), and
the CONSUMER KEY ?, do have to create a user on the group oauth-client ?
where do I put the return URL?

 

Im looking for some tips on how to achieve this.

 

I already enabled this two endpoints.

 

unityServer.core.endpoints.8.endpointType=OAuth2Authz
unityServer.core.endpoints.8.endpointConfigurationFile=conf/endpoints/oauth2
-as.properties
unityServer.core.endpoints.8.contextPath=/oauth2-as
unityServer.core.endpoints.8.endpointName=UNITY OAuth2 Authorization Server
unityServer.core.endpoints.8.endpointRealm=defaultRealm
unityServer.core.endpoints.8.endpointAuthenticators=pwdWeb;certWeb

unityServer.core.endpoints.9.endpointType=OAuth2Token
unityServer.core.endpoints.9.endpointConfigurationFile=conf/endpoints/oauth2
-as.properties
unityServer.core.endpoints.9.contextPath=/oauth2
unityServer.core.endpoints.9.endpointName=UNITY OAuth2 Token endpoint
unityServer.core.endpoints.9.endpointRealm=defaultRealm
unityServer.core.endpoints.9.endpointAuthenticators=pwdRest

 

Thank you

 



Fundação para a Ciência e a Tecnologia Unidade FCCN – Computação Científica
Nacional

Av. do Brasil, 101

1700-066 Lisboa | Portugal

Email:  <mailto:gon...@fc...> gon...@fc... 

 <http://www.fccn.pt/> http://www.fccn.pt 

Aviso de Confidencialidade

 

Esta mensagem é exclusivamente destinada ao seu destinatário, podendo conter
informação CONFIDENCIAL, cuja divulgação está expressamente vedada nos
termos da lei. Caso tenha recepcionado indevidamente esta mensagem,
solicitamos-lhe que nos comunique esse mesmo facto por esta via ou para o
telefone +351 218440100 devendo apagar o seu conteúdo de imediato.

 

Re: [Unity-idm-discuss] [ EUDAT ] - Unity as OAuth Resource Provider

[Krzysztof B. <kb...@un...>]

Hi,
W dniu 19.06.2017 o 16:52, Gonçalo Barata pisze:
> Hi
>
>
>
> Im trying to create a *OAuth 2.0 client*(For those who are familiar with
> eudat –im trying to make B2SHARE automatically communicate with B2ACCESS ).
>
> How to I get the *secret key*  ? (like its done in google or facebook),
> and the *CONSUMER KEY ?*, do have to create a user on the *group
> oauth-client* ? where do I put the *return URL*?
>

Yes, you have to create each authorized client as an entity in Unity, 
most likely with a username identity, assign it a password and add to 
the group of ouauth clients as configured for your endpoint. You can 
also use other authN as TLS authN.

Return URL and other client settings (as allowed grants, logo) are 
configured as OAuth-specific attribtues of that entity. Note: those 
attributes must be set in the oauth clients group, not in '/'.

Best
Krzysztof