The authorization server provides an OAuth token to a client when presented with a set of valid credentials. The generated OAuth token can be used to authorize subsequent requests to the HxGN SDx Server API.
There are currently two implementations commonly used in a HxGN SDx reference architecture:
-
Smart API Manager (SAM) - provided independently of HxGN SDx and provides more extensive Authorization Server capabilities, as well as integration to other identity providers.
-
Okta - is a 3rd-party commercial identity and access management platform commonly used as a SaaS OAuth provider for web applications. This can be used in place of SAM to manage OAuth authentication.