What is OAuth? - HxGN SDx - Update 63 - Administration & Configuration - Hexagon

HxGN SDx API Services Configuration

Language
English
Product
HxGN SDx
Search by Category
Administration & Configuration
SmartPlant Foundation / SDx Version
10

OAuth (Open Authentication) is a token based authentication and authorization standard widely used on the internet. Typical uses for OAuth allows third-party access to secured user information. For example, it allows you to log on to a third-party website using a search engine, such as Google, log on to a Microsoft account, or allow a Facebook application to view a user’s email contacts in a Gmail or Hotmail account. This is without the user having to hand over their credentials to give access.

An OAuth provider issues a signed Token which contains information such as a user name, email address, and a configurable set of claims. For example, to denote the user authorization level and any groups to which the user might belong.

HxGN SDx comes with their own OAuth token issuer built-in, and can also use Smart API Manager (SAM) as a token provider. The built in OAuth provider typically authenticates a user using the application database to validate the user credentials or by using Integrated Windows Authentication (IWA). The Smart API Manager application utilizes a wide range of authentication providers, which avoids the duplication of user records in the application which allow a user to log on.