When an user is registered on the system he is authorised to perform certain functions like accessing API
To complete and fulfil our requirements such as allowing user to login from third party applications, and accessing our api will require us to build an oauth2 flow where one org/merchant/developer/user/partner/ can register as a user and then can also create his client details or applications which can be used to provide him access through his own solution
Before we can interact with an OAuth 2.0 API, we must first register an application with the service. The registration process typically involves creating an account on the service’s website, then entering basic information about the application such as the name, website, logo, etc. After registering the application, you will be given a client_id and client_secret that will be used during the authorization process.
We will allow the developers/partners/consumers/merchants to create and register applications this will be consuming JSON as following
POST /account/registerapp
{
"applicationname":"xyz",
"callbackurl":"upscale.in?cb=",
"applicationdescription":"Lets say that i want to reach the world top mountain and you are onto it",
}
GET /account/getapps
{
"client_id":"randombase64encodedkey",
"client_secret":"randombase64encoding",
"user_details":"association with user / maybe"
}
User will be creating as many as clients he wish to and will be authorising through those created application credentials
We will be authorising the user on the code type and grant_type from the following url
When an user is registered on the system he is authorised to perform certain functions like accessing API
To complete and fulfil our requirements such as allowing user to login from third party applications, and accessing our api will require us to build an oauth2 flow where one org/merchant/developer/user/partner/ can register as a user and then can also create his client details or applications which can be used to provide him access through his own solution
Before we can interact with an OAuth 2.0 API, we must first register an application with the service. The registration process typically involves creating an account on the service’s website, then entering basic information about the application such as the name, website, logo, etc. After registering the application, you will be given a client_id and client_secret that will be used during the authorization process.
We will allow the developers/partners/consumers/merchants to create and register applications this will be consuming JSON as following
POST /account/registerapp
GET /account/getapps
User will be creating as many as clients he wish to and will be authorising through those created application credentials
We will be authorising the user on the code type and grant_type from the following url
GET /oauth/authorize?
POST /oauth/token?
This will ensure that consumer is logged in and can now access their api within their context