Configuring automatic authorization

You can authorize an OAuth client without the approval of the resource owner by enabling the automatic authorization feature of the WebSphere® Application Server OAuth service provider.

Before you begin

Ensure that you enabled the OAuth 2.0 feature and configured an OAuth service provider by following Defining an OAuth service provider.

Procedure

To configure auto consent, use the autoAuthorizeParam attribute and the <autoAuthorizeClient> subelement of the <oauthProvider> element in the server.xml file:

<oauthProvider id="OAuthConfigSample" autoAuthorizeParam="autoauthz" ...>
  ...
  <autoAuthorizeClient>client01</autoAuthorizeClient>
  <autoAuthorizeClient>client02</autoAuthorizeClient>
</oauthProvider>

Results

The client01 and client02 OAuth clients are configured for automatic authorization.