Timeline for Securing API for third party use
Current License: CC BY-SA 4.0
4 events
| when toggle format | what | by | license | comment | |
|---|---|---|---|---|---|
| Jan 6, 2020 at 22:21 | comment | added | Martin K | OAuth2 is many things. Look for the client authentication flow at auth0.com/docs/flows for a scenario for your use case | |
| Jan 6, 2020 at 15:44 | comment | added | Umair | Berin - I am unsure of your conclusion. OAuth2 is for access delegation where a user authorizes a third party application that they have an account with, to share their details with the product they are using. In our case the flow is more like this: 1 - User places an order on our app 2 - Our app sends order details to an API that is hosted by a third party 3 - That third party then needs to periodically provides us order status updates Step 3 is where they would need to access our APIs, to push order updates into our DB. | |
| Jan 6, 2020 at 15:33 | comment | added | Umair | Thanks Berin for the informative answer. | |
| Jan 6, 2020 at 15:07 | history | answered | Berin Loritsch | CC BY-SA 4.0 |