5 Authorizing Access with OAuth 2.0

In this chapter, you will get a deeper understanding of how Keycloak enables you to authorize access to REST APIs and other services by leveraging the OAuth 2.0 standard. Through using a sample application that was written for this book, you will see first-hand the interaction between an application and Keycloak to retrieve an access token that can be used to securely invoke a service.

We will start by getting the playground application up and running, before using the playground application to obtain a token from Keycloak that can be used to securely invoke a REST API. Then, we’ll build on this knowledge to look at obtaining consent from a user before granting access to the application, as well as how to ...

Get Keycloak - Identity and Access Management for Modern Applications - Second Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Keycloak - Identity and Access Management for Modern Applications - Second Edition by Stian Thorgersen, Pedro Igor Silva

5

Authorizing Access with OAuth 2.0

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly