Reputation: 139
WSO2 APIM access_token generation with default scope
I have configured wso2am-2.6.0 using SAML with wso2is-5.7.0 following the example https://wso2.com/library/articles/2017/03/use-cases-of-utilizing-saml-with-wso2-api-manager/
Both app is installed on same server with Port Offset=3. In the IS is added the second store from Active Directory.
I have defined an API with some scopes. Any "scope" I would use, after going through the Authentication process the APIM returns the access_token with scope = default.
Example below:
{
"access_token": "8f1cbaf3-6858-327e-9410-5210a1413e92",
"refresh_token": "27cf0b3a-a3af-3826-94f3-9a0fd8518d33",
"scope": "default",
"token_type": "Bearer",
"expires_in": 1024
}
What can be wrong?
Upvotes: 3
Views: 816
Answers (1)
Reputation: 139
I found the problem.
Because I did not define any Role for the Scopes, to generate a token using my Scopes, it was necessary to add in the file <dir>/wso2am-2.6.0/repository/conf/api-manager.xml the list of Scopes in the tag ScopeWhitelist:
<OAuthConfigurations>
<ScopeWhitelist>
<Scope> news_read </ Scope>
<Scope> news_write </ Scope>
</ ScopeWhitelist>
After that, access tokens were generated for my Scopes.
Upvotes: 1
Related Questions
- WSO2 API Manager 3.2 disable the access-token
- WSO2 APIM 3.0.0: Unable to generate access token from devportal
- WSO2 Identity Server 5.5.0 - Self contained access token
- Requesting Access Token from WSO2 API Manager via Token API
- WSO2 API Manager, is it possible to disable the access-token mechanism
- WSO2 Multiple scopes for a single API possible
- How could I invoke an api without access token in APIM 2.0
- WSO2: How to get user access token by API in a SSO setting environment with API-M and Identity server?
- WSO2 Api Manager using 3rd party authentication service to generate access tokens
- WSO2 APIM Authentication