Each client application you are configuring requires an OAuth-specific callback URL, and an authentication URL for your environment. These URLs are used to verify that the redirects performed during authentication are correct.
The OAuth Manager is a web utility that allows you to set callback and authentication URLs. It installs as part of the Layer 7 Gateway installation steps.
Note: Perform this procedure for each OAuth Client for which you configure CA CloudMinder as an OAuth authorization server.
Follow these steps:
https://<GATEWAY1-HOST>:8443/<PREFIX>/oauth/manager
Where GATEWAY1-HOST is the host name of Gateway one, and <PREFIX> is the Prefix you gave to the current tenant.
Note: To edit an existing client, select the client from the list, then click List Keys.
https://<CLUSTER-HOST>:8443/<PREFIX>/oauth/v2/client/authcode, https://<CLUSTER-HOST>:8443/<PREFIX>/oauth/v2/client/implicit
Where <CLUSTER-HOST> is the VIP of the CA CloudMinder application-tier load balancer, and <PREFIX> is the prefix you selected for the current tenant.
You set the prefix for your tenant during the Install OpenID Connect step.
https://<CLOUDMINDER-HOSTNAME>/chs/login/<TENANT-ID>/<APPLICATION-ID>/
Where <CLOUDMINDER-HOSTNAME> is the hostname of the CA CloudMinder CSP console, <TENANT-ID> is the tenant tag specified during tenant creation, and <APPLICATION-ID> is the application tag specified during application creation.
The Environment configuration sends the browser to the CSP console to make an attempt to access the CA CloudMinder Application associated with the OAuth client application.
You have now completed the steps necessary to configure an OAuth client to use CA CloudMinder as an OAuth authorization server. To configure additional OAuth clients, you repeat only the steps required once your tenant configuration is complete, indicated in the flow illustration.
|
Copyright © 2015 CA Technologies.
All rights reserved.
|
|