register_oauth_internal_client

This API manages the ROLE and USER for internal API requests.

For internal REST API requests, Guardium predefines a special ROLE and USER. This user cannot be removed or modified through the accessmgr UI and cannot be used to log in the UI. This user's password never expires, but is revoked if client ID is revoked.

On OAuth client registration, use this API to accept this user and client ID. The API generates and stores a random strong password for the user. The API then returns a client secret and the generated password. The internal (S-TAP, maybe others) client must secure the client secret and password.

To assign permissions for different functions, use the accessmgr UI.

This API is available in Guardium V10.1.4 and later.

GuardAPI syntax

register_oauth_internal_client parameter=value

Parameters

Parameter Value type Description
getEncrypted Boolean Valid values:
  • 0 (false)
  • 1 (true)

Default = 0 (false)

grant_types String For valid values, call register_oauth_internal_client from the command line with --help=true.
module String Required. For valid values, call register_oauth_internal_client from the command line with --help=true.
redirect_uris String
scope String