• Home
• OAuth2

We must give the Client Applications a shared secret that will be used to reinforce the security of the application. This shared secret or key will be registered in the keys.xml file. The format of this archive will be:

Also we must define the scopes that are allowed for each Client Application. This is described by the elements <AllowedScopes>. For each scope we'll have got one <AllowedAttributes> that contains the Attribute name and the value allowed for each one.

<?xml version="1.0" encoding="UTF-8"?>
<Clients>
<Client id="app_client_1">
	<Key>client_example_key</Key>
	<AllowedScopes>		
		 <Scope id="http://www.rediris.es/sir/api/sps_available.php">
			<AllowedAttributes>
				<Attribute name="sHO">
					<Values check="all">
						<Value>rediris.es</Value>
					</Values>
					<Values check="any">
						<Value>otro1a</Value>
					</Values>
					<Values check="none">
						<Value>otro1b</Value>
					</Values>
				</Attribute>
			</AllowedAttributes>
	     </Scope>		
	  	<Scope id="scope2">
			<AllowedAttributes>
				<Attribute name="sHO2">
					<Values check="all">
						<Value>rediris.es2</Value>
					</Values>
					<Values check="any">
						<Value>otro2a</Value>
					</Values>
					<Values check="none">
						<Value>otro2b</Value>
					</Values>
				</Attribute>
			</AllowedAttributes>
	     </Scope>
	</AllowedScopes>	
</Client>	
</Clients>

Where:

• client will be the identificator of the Client Application
• key will be the shared secret.

Register an application in RedIRIS

Under construction.