[DOCU-2045] DOC: Example of how to use OAuth 2.0 Created: 06/May/20  Updated: 03/Jan/23  Resolved: 03/Jan/23

Status: Closed
Project: Documentation
Component/s: None
Affects Version/s: None
Fix Version/s: None

Type: Improvement Priority: Neutral
Reporter: Richard Gange Assignee: Unassigned
Resolution: Obsolete Votes: 1
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Attachments: PNG File flow.png    
Issue Links:
Relates
relates to MGNLMAIL-104 Unable to send email through Gmail Closed
relation
is related to MGNLMAIL-66 Implement OAuth 2.0 authentication Closed
is related to MGNLMAIL-136 CLONE - Implement OAuth 2.0 authentic... Closed

 Description   

It's not clear how to configure OAuth 2.0. We really need an example of how this is done. Gmail would be a good example.

Here is the flow:

The steps:

   The flow illustrated in Figure 2 includes the following steps:

   (A)  The client requests an access token by authenticating with the
        authorization server and presenting an authorization grant.

   (B)  The authorization server authenticates the client and validates
        the authorization grant, and if valid, issues an access token
        and a refresh token.

   (C)  The client makes a protected resource request to the resource
        server by presenting the access token.

   (D)  The resource server validates the access token, and if valid,
        serves the request.

   (E)  Steps (C) and (D) repeat until the access token expires.  If the
        client knows the access token expired, it skips to step (G);
        otherwise, it makes another protected resource request.

   (F)  Since the access token is invalid, the resource server returns
        an invalid token error.

If the refresh token is issued after authentication then what should be provided in the field?


Generated at Mon Feb 12 01:23:33 CET 2024 using Jira 9.4.2#940002-sha1:46d1a51de284217efdcb32434eab47a99af2938b.