[ https://jira.fiware.org/browse/HELP-8510?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Fernando Lopez updated HELP-8510:
---------------------------------
HD-Chapter: Data
Description:
Created question in FIWARE Q/A platform on 09-04-2017 at 09:04
{color: red}Please, ANSWER this question AT{color} https://ask.fiware.org/question/784/how-to-control-access-to-orion-using-oauth-20/
+Question:+
How to control access to Orion using oauth 2.0?
+Description:+
Hi.
I can access the entity named 'TestRoom' in Orion using request like 'http://localhost:1026/v2/entities/TestRoom' without any access restrictions.
So, I just want to make constraint to access Test_Room using OAuth2.0 token.
But now I don't know how to make access token scope to entity in Orion.
For example, I want to make the user or the app that has access token(scope:read temperature from TestRoom) can read temperature information from TestRoom.
If I know above thing, I will make the request access token(scope:read info. from Test_Room) and use that token with X-Auth-Token header.
So Could you get me any information, URL or document?
I already read RFC 6749 and some documents of FIWARE Security GE, and installed orion, keyrock and authzforce.
And I was not install the Willma(PEP) because Tour-Guide App provided FIWARE doesn't use this GE.
(I don't know why, as you know, PEP is entry point of all FIWARE security right?)
was:
Created question in FIWARE Q/A platform on 09-04-2017 at 09:04
{color: red}Please, ANSWER this question AT{color} https://ask.fiware.org/question/784/how-to-control-access-to-orion-using-oauth-20/
+Question:+
How to control access to Orion using oauth 2.0?
+Description:+
Hi.
I can access the entity named 'TestRoom' in Orion using request like 'http://localhost:1026/v2/entities/TestRoom' without any access restrictions.
So, I just want to make constraint to access Test_Room using OAuth2.0 token.
But now I don't know how to make access token scope to entity in Orion.
For example, I want to make the user or the app that has access token(scope:read temperature from TestRoom) can read temperature information from TestRoom.
If I know above thing, I will make the request access token(scope:read info. from Test_Room) and use that token with X-Auth-Token header.
So Could you get me any information, URL or document?
I already read RFC 6749 and some documents of FIWARE Security GE, and installed orion, keyrock and authzforce.
And I was not install the Willma(PEP) because Tour-Guide App provided FIWARE doesn't use this GE.
(I don't know why, as you know, PEP is entry point of all FIWARE security right?)
HD-Enabler: Orion
> [fiware-askbot] How to control access to Orion using oauth 2.0?
> ---------------------------------------------------------------
>
> Key: HELP-8510
> URL: https://jira.fiware.org/browse/HELP-8510
> Project: Help-Desk
> Issue Type: Monitor
> Components: FIWARE-TECH-HELP
> Reporter: Backlog Manager
> Assignee: Fermín Galán
> Labels: KeyRock, OAuth, Token, orion, scope
>
> Created question in FIWARE Q/A platform on 09-04-2017 at 09:04
> {color: red}Please, ANSWER this question AT{color} https://ask.fiware.org/question/784/how-to-control-access-to-orion-using-oauth-20/
> +Question:+
> How to control access to Orion using oauth 2.0?
> +Description:+
> Hi.
> I can access the entity named 'TestRoom' in Orion using request like 'http://localhost:1026/v2/entities/TestRoom' without any access restrictions.
> So, I just want to make constraint to access Test_Room using OAuth2.0 token.
> But now I don't know how to make access token scope to entity in Orion.
> For example, I want to make the user or the app that has access token(scope:read temperature from TestRoom) can read temperature information from TestRoom.
> If I know above thing, I will make the request access token(scope:read info. from Test_Room) and use that token with X-Auth-Token header.
> So Could you get me any information, URL or document?
> I already read RFC 6749 and some documents of FIWARE Security GE, and installed orion, keyrock and authzforce.
> And I was not install the Willma(PEP) because Tour-Guide App provided FIWARE doesn't use this GE.
> (I don't know why, as you know, PEP is entry point of all FIWARE security right?)
--
This message was sent by Atlassian JIRA
(v6.4.1#64016)
You can get more information about our cookies and privacy policies clicking on the following links: Privacy policy Cookies policy