From Bright Pattern Documentation
< 3.16:User-management-api-specification
Revision as of 00:00, 14 November 2018 by Tracy (talk | contribs) (Created page with "<translate>= Security and Authentication= Either HTTP or HTTPS transport can be configured. The same setting applies to the entire Configuration Web Portal server. For product...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search
• 3.16 • 3.17 • 3.18

Security and Authentication

Either HTTP or HTTPS transport can be configured. The same setting applies to the entire Configuration Web Portal server. For production deployments on public Internet only, HTTPS is enabled.

The OAuth 2.0 Client Credentials Grant (RFC 6749, Section 4.4) is used to authenticate clients of this API. The username is checked against the list of users configured for the provider and for having an appropriate role/privilege to add/delete/import tenants.



< Previous | Next >