Defining an HTTP bearer security scheme
An HTTP bearer security scheme is used to generate access tokens that are exchanged between the server and the client when calling the API operations.
About this task
For information on the use of bearer tokens with OpenAPI 3 APIs, see Bearer Authentication in the OpenAPI 3 specification.
If an HTTP bearer token is found in the request, its value is stored within the context as
api->security->bearer_token. If an external URL validation is invoked, any response
with a status code of 200 is stored within the context as
api->security->bearer_validation_response.
You can complete this task either by using the IBM API Studio UI application, or by using the browser-based API Manager UI.
At any time, you can switch directly to the underlying OpenAPI YAML
source by clicking the Source icon
.
To return to the design form, click the Form icon
.