to get Access_token the API consults the Iot_Agents

ging / fiware-idm

OAuth 2.0-based authentication of users and devices, user profile management, Single Sign-On (SSO) and Identity Federation across multiple administration domains.

https://keyrock-fiware.github.io

MIT License

36 stars 80 forks source link

to get Access_token the API consults the Iot_Agents #55

Open joansrios opened 5 years ago

joansrios commented 5 years ago

why to get the access token, the API only searchs into the Iot_agents if these don't have permissions into the application?

me:

Iot_Agent: iot

when i try to use any authorization method with an user credentials, always the result is 500. ¿which is the purpose to limit these access_tokens to the Iot Agents?

apozohue10 commented 5 years ago

When you request an access token via Resource Owner Password Credentials Grant, Keyrock search either in Iot Agents and User Table because it doesn't know in which table is the entity who is requesting a token. You can see in your images that these two queries to the database are performed.

Probably you need to clone the latest version of Keyrock in which are solved somo problems related to user authentication and run the ñatest migrations.

joansrios commented 5 years ago

@apozohue10 do you have the Keyrock 7.5.0 API documentation?

The Apiary web page presents discontinued commands that return internal server error 500

error