Versions Compared

Old Version 8

changes.mady.by.user Paul Ruvin

Saved on

compared with

New Version 9

changes.mady.by.user Paul Ruvin

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Panel
borderColor#9EBEE5
bgColor#f0f0f0
borderWidth1px

Client Application: This is the application that want wants to access a protected resource

Authorisation Server: The server that authenticates the Client and issues access tokens (e.g DualShield Authentication server)

Resource Server: The API or service the client wants to access, using the access token Authorisation Server: The server that authenticates the Client and issues access tokens (e.g. (also DualShield Authentication Server)

Access Token: A credential issued by the authorization authorisation server that the client uses to access protected resources.  Typically Typically a JWT (JSON Web Token) consisting of a client ID and Client Secret.


The client application requests an access token.  To receive this token,  the client posts an API call to the authorisation server (DualShield Backend). This API call will include values of the Client  Application Requests access to the API (Resource Server) via Reverse Proxy.ID and Client Secret. 

Once the authorisation server has validated this request, it will send an access token back to the client.