Developers

Authorization

Being as identity and access management solution PlusAuth also uses itself for authentication. For using the Api you must have an access token retrieved from PlusAuth. Be aware that access tokens hold your privileges so make sure to keep them safe.

PlusAuth Rest API protected by OAuth 2.0 and you can access it with Bearer tokens.

API requests that made over HTTP will be redirected to corresponding HTTPS endpoint. Depending on your http client those redirects may fail, so make sure you use HTTPS instead of HTTP.

You can retrieve tokens by using OAuth 2.0 flows.

Auth Plus API expects tokens to be granted to the user himself. That means you cannot use Client Credentials flow which results in machine to machine tokens.
Make sure you have granted the permissions to client as it described in Core Authorization.
Retrieve Token with OAuth2 Resource Owner Password Grant
Make sure your client has password grant type enabled.
1
2
3
4
5
6
7
8
9
10
Loading...