How to use the System.OauthAccountLink component to perform authorized access to protected REST endpoints (Facebook Example) by Frank Nimphius

image

OAuth 2.0 (Open Authorization) is the standard protocol for token-based authorization. It allows clients (such as chatbots) to access protected resources on behalf of a resource owner without passing the resource owner’s credentials with the request. 

Chatbots created with Oracle Digital Assistant integrate with remote back-end systems through custom components that invoke REST services. For custom components to access protected REST endpoints, some sort of authorization must be passed in the request header.  

Oracle Digital Assistant supports OAuth2 authorization through the built-in System.OAuthAccountLink component. You use the System.OAuthAccountLink component to get an authorization token, which you then exchange for an access token in a custom component call to the OAuth2 token endpoint, so that subsequent custom component calls can access protected REST resources.

This article explains how to authorize custom component requests for OAuth2 protected resources using Facebook as an example. Facebook supports OAuth2 and allows a bot to access user profile information if authorized by the user.

About the System.OAuthAccountLink Component

The two most commonly used authorization options in OAuth2

· Client Credential Flow – Using the client credential flow, clients like Oracle Digital Assistant obtain authorization to protected resource through a shared client Id and client secret. This authorization flow type can be handled using a custom component only (subject of a future Oracle TechExchange article). Read the complete article here.

Developer Partner Community

For regular information become a member in the Developer Partner Community please register here.

clip_image003 Blog clip_image005 Twitter clip_image004 LinkedIn image[7][2][2][2] Facebook image Meetups

Technorati Tags: PaaS,Cloud,Middleware Update,WebLogic, WebLogic

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.