How to create OAuth2 Opaque(Reference) Access Tokens
How to create OAuth2 Opaque(Reference) Access Tokens in apimanager 410? I followed enter link description here, but cannot find OAUTH token type when we create applications.
I want to create this application because of the issue enter link description here. if same token is sent every time we call the token api, this will work for us. Our tests need to get the token first and use it from there. there can be different apis calling in different times and this will expire the first token.
There is a lengthy manual method that lets you to create opaque tokens in APIM 4.1.0, but our recommendation is to proceed with the JWT token-based applications. This will reduce the load at the gateway with token validation which is a huge performance gain. Even if you used the same clientID, or secret Pair, you can change the scopes set with a device scope and I believe this should give you the ability to create multiple tokens at the same time.
Having said that, you can create opaque token in the below approach, but this will remove the user experience provided in the devportal and you have to use carbon console(https://localhost:9443/carbon) if you need to change your application.
- log in to admin portal (https://localhost:9443/admin)
- Open Key managers --> resident key manager (or whatever the key manager you have) --> and select
Out Of Band Provisioningand save.
- Log in to carbon console (https://localhost:9443/carabon)
- Register a service provider.
- Under Inbound authentication config, select OAuth/OpenID connect configurations and configure an OAuth Applicaiton
- Add you application details from here as you prefer with the listed grant types and create an application.
- Make sure to select the token issuer and default. This is where you select whether the token type is JWT or Opaque.
- Once you save it, you can find the client ID secret pair in here.
- Log in to devportal (https://localhost:9443/devportal)
- Create an application.
- Under the production Keys section, now you can see a new option enabled as provide existing OAuth keys.
- Add the consumer key secret pair you created in the step 8.
- Now you have created an application that generates opaque tokens.
- Error showing Transport Level Information error in SOAP Message
- Migrating from WSO2 Enterprise Integrator to Micro Integrator
- Using script mediator in WSO2 Micro Integrator 4.3
- Deploying CApp to Service Catalog fails on malformed JSON error
- Error while launching run and debug: Build process failed - wso2 micro integrator with Visual Studio
- WSO2 Error while building Passthrough stream java.lang.StringIndexOutOfBoundsException
- Extracting binary as base64 String results in incomplete file?
- WSO2 Microintegrator: Error - Mediator from connector File not recognized
- WSO2 - Failure when building the Data Mapper
- WSO2 Micro Integrator: How to handle "application/json; odata.metadata=minimal" content-type from backend?
- WSO2 has not a bin directory
- WSO2 Large File Handling
- Is Endpoint Security Authentication in WSO2 APIM Done per API or per request?
- Can I use the dashboard the WSO2 DAS from other application java
- Adding HTTP security headers to WSO2 APIM (4.1.0) via deployment.toml config
- Compatibility Issue: WSO2 MI 4.1 with MongoDB Connector v2.0.0 and MongoDB 6.x Driver
- How to Access Fields in application/vnd.oracle.adf.resourceitem+json Response in WSO2 Integration Studio?
- WSO2 Multiple Gateway deployment production/sandbox endpoints
- Is there a way to run three instances of WSO2 AM in one localhost?
- CORS Configuration not working in WSO2 API Manager for Oauth2/token API
- WSO2 - Identity server 6.1.0 - Force user to change his password on first login
- OSGI Bundling issue while upgrading WSO2 APIM 3.2 to 4.3
- WSO2 API Manager 4.2 with AWS ALB : Problems with mTLS Authentication Setup
- WSO2 API Manager (wso2am-4.3.0) - Error When Invoking APIs After Disabling OpenAPI Validations
- WSO2 Kafka Consume messages from topic issue
- WSO2 API Manager (wso2am-4.3.0) - How to Disable OpenAPI Validation When Importing Swaggers?
- "keytool error: java.io.IOException: Invalid keystore format"
- wso2 api manager elk based analytics
- How to enable TLS 1.1 in wso2 APIM 4.2
- WSO2 API Manager (wso2am-2.1.0) - How to implement passwordless authentication using WSO2 APIM and Microsoft Authenticator App?