/
Third-party token exchange grant
Third-party token exchange grant
Thomas Langenskiold
Owned by Thomas Langenskiold
Introduction
This is a non-standard authentication grant type to allow using an access token from a third-party authentication service to authenticate with the service. The service uses the third-party service's token introspection endpoint to find the identity of the user trying to authenticate. The third-party authentication service must be configured with the system before it can be used.
User flow
- The user authenticates with the third-party service and receives a token
- The user calls the access_tokens endpoint with the third_party_token_exchange grant type, providing the token from the third-party service as credentials.
- If successful, the user receives a normal login response and can now use the service using the access tokens provided.
Migration guide
This method replaces the /api/oauth/login_with_token endpoint. The "access_token" parameter from the old endpoint is provided to the new access_tokens endpoint in in the POST body, under the "credentials" field. The grant_type works like any other login mechanism in all other aspects.
Table of Contents
Child Pages
Related content
Oauth 2.0 based authentication
Oauth 2.0 based authentication
More like this
STB passwordless auth grant
STB passwordless auth grant
More like this
Authentication Using Access Token
Authentication Using Access Token
More like this
Device Authorization Grant
Device Authorization Grant
More like this
Changing user password
Changing user password
More like this
User Management V4 API
User Management V4 API
More like this