Dear Tarek, I'm not sure because, as you say, the expert here are the member of the UPM team. However, I'll try to provide some extra info, bases on my (limited :) knowledge. I think that there are two basic alternatives: * The GEi interprets the X-Auth-Token and interacts with Keyrock to validate it directly * The GEi is not aware of any X-Auth-Token header (it just ignores them) and uses the PEP proxy (https://github.com/ging/fi-ware-pep-proxy) for processing the X-Auth-Token header and interact with Keyrock. Orion uses the second approach. In the FI-LAB instance at orion.lab.fi-ware.org we run a PEP proxy on the Orion service port number (i.e. 1026) and the Orion itself in a different port (10026). The PEP proxy receives request on 1026, check authentication with the X-Auth-Token and, if authentication is ok, it passes the request to Orion at 1026. The https://github.com/ging/fi-ware-pep-proxy includes README.md with installation and usage instructions. Maybe that information is enough to setup your environment. I hope this information helps... Best regards, ------ Fermín El 04/06/2014 17:46, t.elsaleh at surrey.ac.uk<mailto:t.elsaleh at surrey.ac.uk> escribió: Thanks Fermin! I tried contacting UPM about this but got no reply yet. Their guide shows how applications can get a token, but not how a GE can verify the user's token. Shouldn't the GE contact the keyrock instance? If so, what is the endpoint details? Best regards, Tarek Sent from Samsung Mobile -------- Original message -------- From: Fermín Galán Márquez <fermin at tid.es><mailto:fermin at tid.es> Date: 04/06/2014 15:03 (GMT+00:00) To: fiware-iot at lists.fi-ware.org<mailto:fiware-iot at lists.fi-ware.org> Subject: Re: [Fiware-iot] keyrock and OAuth Dear Tarek, Yes, I did. The Orion instance at orion.lab.fi-ware.org:1026 is using OAuth, so you need a valid X-Auth-Token corresponding to FI-LAB users in order API request be accepted. Best regards, ------ Fermín El 04/06/2014 15:43, t.elsaleh at surrey.ac.uk<mailto:t.elsaleh at surrey.ac.uk> escribió: Hello, Has anyone managed to integrate their GE with keyrock and OAuth for FI-LAB? Best regards, Tarek _______________________________________________ Fiware-iot mailing list Fiware-iot at lists.fi-ware.org<mailto:Fiware-iot at lists.fi-ware.org> https://lists.fi-ware.org/listinfo/fiware-iot ________________________________ Este mensaje se dirige exclusivamente a su destinatario. Puede consultar nuestra política de envío y recepción de correo electrónico en el enlace situado más abajo. This message is intended exclusively for its addressee. We only send and receive email on the basis of the terms set out at: http://www.tid.es/ES/PAGINAS/disclaimer.aspx ________________________________ Este mensaje se dirige exclusivamente a su destinatario. Puede consultar nuestra política de envío y recepción de correo electrónico en el enlace situado más abajo. This message is intended exclusively for its addressee. We only send and receive email on the basis of the terms set out at: http://www.tid.es/ES/PAGINAS/disclaimer.aspx -------------- next part -------------- An HTML attachment was scrubbed... URL: <https://lists.fiware.org/private/old-fiware-iot/attachments/20140605/026eb0d4/attachment.html>
You can get more information about our cookies and privacy policies clicking on the following links: Privacy policy Cookies policy