Use Layer 7 Gateways to leverage the emerging standard for access control with Web APIs
OAuth is fast becoming the most widely recognized standard for access control with REST and Web APIs. OAuth 2.0 – the latest version of the protocol – is impressively rich, with many grant types addressing many use cases (two-legged, three-legged, with or without redirection etc).
These tutorials provide practical instructions on using OAuth with Layer 7’s SecureSpan and CloudSpan Gateways. Layer 7’s OAuth 2.0 template implementation provides a standard-compliant OAuth solution to which you can integrate your own API, identity providers, API keys etc.
The Layer 7 OAuth Toolkit also includes client applications for testing each grant type defined by the specification. You can test the OAuth handshake and test calling an API using the access token provided by the handshake. You can also test token revocation and token refresh.