UPDATE! The community will be go into read-only on April 19, 8am Pacific in preparation for migration on April 21. Read more.
UPDATE! The community will be go into read-only on April 19, 8am Pacific in preparation for migration on April 21.Read more.
This website uses cookies. By continuing to browse or login to this website, you consent to the use of cookies. Learn more.
OK
Satz
Commodore
Commodore
‎2019-12-23 19:27
329 views

How to refresh the access token which is generated by the REST Services ?

 As per the document https://www.netiq.com/documentation/identity-manager-developer/rest-api-documentation/idmappsdoc/#/, I have generated the tokens. I can give this token to any third party application to invoke my PRDs. As the access token will expire in sometime, how to refresh it ? I could not find any URI's to refresh the access tokens using the refresh tokens.Need anyone's help here.

Labels (1)
Labels
Tags (1)
0 Likes
Reply
Report Inappropriate Content
1 Reply
Sebastijan
Knowledge Partner Knowledge Partner
Knowledge Partner
‎2019-12-24 09:34

Please note I have not tested this so take my post only as general directions, not as a "cook book"! But I think this should work.

 

When you're getting tokens calling /osp/a/idm/auth/oauth2/grant, you get two tokens (at least based on documentation link you've provided):

  • access_token
  • refresh_token

 

Access token is used in Authorization header when making a REST calls to the APIs, but refresh token can be used to get new access token when old one expires.

 

How to use refresh token to get new access token?

Well, OSP is basically standard OAuth2 authorizatioon server, so basically you need to send refresh token to token endpoint and you'll get new access token.

Hint on how to do this with OSP can be found in Identity governance documentation (probably there are other documents, but this was first returned by google 😊😞

https://www.netiq.com/documentation/identity-governance-35/references/REST-API-Access-Token.pdf

When reading this documentation please keep in mind that you're using OSP, not NAM.

In that documentation you have two sections:

  • "Refresh Tokens": general information regarding refresh tokens
  • "Access Token Request": How to get new access token from refresh token

When I was reading this PDF I have noticed that there are references to "OAuth 2.0 token endpoint".

For OSP this URL si:

http[s]://[:port]/osp/a/idm/auth/oauth2/token

 

I hope those directions will help you.

 

Kind regards

Sebastijan

 

 

 

0 Likes
Reply
Report Inappropriate Content
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.