Multiple Tokens for the same resource owner/ client_id combination
Article ID: 76447
Updated On:
Products
CA API Gateway (Layer 7)
SA94 to API SECURITY
STARTER PACK-7
CA Rapid App Security
MOBILE API GATEWAY
CA Mobile - API Gateway
CA API Gateway
Issue/Introduction
How can multiple tokens be created for the same combination of resource owner and client_id?
Environment
Release:
Component: APIGTW
Component: APIGTW
Resolution
Prior to OTK 4.1 if the same client id/resource owner combination was used to generate tokens it would remove the previously generated tokens and create a new one. As of OTK 4.1 you can now customize the number of tokens available to be generated from this combination.
To accomplish this:
1) Copy the variable max_oauth_token_count from the policy OTK Storage Configuration.
2) Paste the variable in the hash fragment policy of the same name, #OTK Storage Configuration
3) Edit the value to reflect the maximum number of OAuth tokens per app and resource owner combination.
To accomplish this:
1) Copy the variable max_oauth_token_count from the policy OTK Storage Configuration.
2) Paste the variable in the hash fragment policy of the same name, #OTK Storage Configuration
3) Edit the value to reflect the maximum number of OAuth tokens per app and resource owner combination.
Feedback
Yes
No
Powered by
