Results 1 to 2 of 2

Thread: Adding new scopes

  1. Jun 5th, 2012, 09:19 AM #1
    hansamann
    hansamann is offline Member
    Join Date
    Mar 2007
    Posts
    34

    Default Adding new scopes

    Hi there,

    the sample oauth client spec includes scopes such as read, write. What if I want to have a scope named 'customer' - is this possible? I tried it once but I got errors at startup. Is there some extra implementation required here?

    Once we get the scope defined, I understand that I can use a role like SCOPE_CUSTOMER for example in the <http> tag for limiting the access, right? I guess I can use the same with the annotations on individual controller methods then.
    Reply With Quote Reply With Quote
  2. Jun 6th, 2012, 02:52 AM #2
    Dave Syer
    Dave Syer is offline Senior Member
    Join Date
    Jun 2005
    Posts
    4,232

    Default

    Quote Originally Posted by hansamann View Post
    the sample oauth client spec includes scopes such as read, write. What if I want to have a scope named 'customer' - is this possible?
    Scopes are just strings, so you can use any value you like - it's a contract between the client and the Resource Server. If there are any scopes registered with a client then no token will be issued with any other value, but that's the only restriction placed by the Authorization Server.

    Once we get the scope defined, I understand that I can use a role like SCOPE_CUSTOMER for example in the <http> tag for limiting the access, right? I guess I can use the same with the annotations on individual controller methods then.
    Yes that should work.
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules