Access Management
Overview
welcome to identos access management identos access management capabilities help you issue access tokens to your client applications protect your apis interact with consent management services quick links setup your first authorization flow with our quickstart, or learn how to create and manage resources, clients, and more in our guides get started create a simple oauth client credentials flow with the identos authorization server 1 create a basic resource server docid 43vmg opg9qs9umq0 j8t 2 create a basic resource docid\ ba8inrcxegve9zyr7gjuh 3 create a basic client docid\ pmyncndy11xup3afhp7 8 4 get an access token docid\ scyrdyqemprtig6vbsdxr 5 enable consent management docid\ egg ifn07igbqrzouzgwn resource guides learn how to create, manage, and link resources create a resource docid\ soqsecqwnoezfvzfzddhy create a resource server docid 4zq ogxlxrhtewfzqur9b link a resource to a resource server docid\ jxpuxedrzjnjodedwgp s client guides learn how to create, manage, and authorize clients create a client docid\ delhi bgrp2e4owfpqc3t grant client access to a resource docid 2iu7uszrhat hcfozjdch core components identos access management extends your existing resource servers and clients with two core components authorization server holds definitions of client, resources, scopes, and policies, as well as issues access tokens resource server adapters provides custom integrations for protecting your existing apis and resources api resource server this is the api service that you wish to allow clients to access access management defines rules and policies that protect under what conditions a client may access the api client words authorization server the identos authorization server manages requests resources words provide overview of access management (authorization) section content overview of authorization flows list of basic components (resource, resource owner, authorization server, client) relationship between components (diagram?) list supported authorization standards/frameworks oauth 2 0 (protects specific resources accessible through api; delegates authorization decisions to authorization server hosting user accounts; provides client permissions through access token) uma (provides delegated access; built on top of oauth 2 0) saml (authorization for sso) list related authentication standards/frameworks (only for "big picture" awareness; link to identity management) oidc (provides authentication/identity layer for oauth 2 0) saml (authentication for sso) link to quickstart links to guides (by component) resource create resource etc client create client etc link to learn resources (tbd) authorization authorization server resource client oauth 2 0 uma etc