Access Management

Overview

Welcome to IDENTOS Access Management

IDENTOS Access Management capabilities help you

  • issue access tokens to your client applications
  • protect your APIs
  • interact with consent management services

Quick Links

Setup your first authorization flow with our Quickstart, or learn how to create and manage Resources, Clients, and more in our Guides.

Get Started

Create a simple OAuth client credentials flow with the IDENTOS Authorization Server.

  1. Create a Basic Resource Server
  2. Create a Basic Resource
  3. Create a Basic Client
  4. Create a Basic Access Token
  5. Enable Consent Management

Resource Guides

Learn how to create, manage, and link resources.

Client Guides

Learn how to create, manage, and authorize clients.



Core Components

IDENTOS Access Management extends your existing Resource Servers and Clients with two core components:

  • Authorization Server: Holds definitions of Client, Resources, scopes, and policies, as well as issues Access Tokens.
  • Resource Server Adapters: Provides custom integrations for protecting your existing APIs and Resources.
Relationship between Access Management services and other actors
Relationship between Access Management services and other actors


API Resource Server

This is the API service that you wish to allow clients to access. Access management defines rules and policies that protect under what conditions a Client may access the API.

Client

Words

Authorization Server

The IDENTOS Authorization Server manages requests

Resources

Words













  • Provide overview of Access Management (Authorization) section content.
  • Overview of Authorization Flows
    • List of basic components (Resource, Resource Owner, Authorization Server, Client)
    • Relationship between components (diagram?)
    • List supported authorization standards/frameworks
      • OAuth 2.0 (protects specific resources accessible through API; delegates authorization decisions to Authorization Server hosting user accounts; provides client permissions through access token)
      • UMA (provides delegated access; built on top of OAuth 2.0)
      • SAML (authorization for SSO)
    • List related authentication standards/frameworks (only for "big picture" awareness; link to Identity Management)
      • OIDC (provides authentication/identity layer for OAuth 2.0)
      • SAML (authentication for SSO)
  • Link to Quickstart
  • Links to Guides (by component)
    • Resource
      • Create Resource
      • ...etc.
    • Client
      • Create Client
      • ...etc.
  • Link to Learn resources (TBD)
    • Authorization
    • Authorization Server
    • Resource
    • Client
    • OAuth 2.0
    • UMA
    • ..etc.



Updated 23 Apr 2024
Did this page help you?
PREVIOUS
Introduction
NEXT
Get Started
Docs powered by Archbee