OAuth 2.0 services

WebSphere® Application Server OAuth services include both the OAuth authorization service and the web resource authorization decision service.

The OAuth 2.0 authorization service provides all OAuth 2.0 protocol endpoint URLs, and is responsible for client authorization and token issuing.

The web resource authorization decision service is built into the Liberty web authentication code. When a client accesses an OAuth protected web resource, the OAuth token is validated and mapped to a WebSphere Application Server platform security subject that the web request then runs under.