This episode covers advanced API access control with OAuth to restrict the client that have access to APIs on your Oracle Integration.
Summary:
02:43 OAUTH Client Credential Flow - Direct against OIC
05:10 OAUTH Client Credential Flow - Using OIC’s Identity Provider
06:37 OAUTH Client Credential Flow - With token issued by external IDP
11:02 JWT local validation vs calling a introspection endpoint
15:27 Controlling access to APIs via scope claims - Demo
29:55 Controlling access to individual API methods via scope claims - Demo
15 сен 2024