OAuth2 : Authorize MuleSoft API Using OKTA OIDC | OAuth2 | API Manager
Вставка
- Опубліковано 17 лип 2024
- This video will explain how to secure MuleSoft APIs using OKTA OIDC and validate the token using JWT Validation policy.
We will see complete process how to generate the token and validate the token using Anypoint API Manager.
Excellent, Incredible stuff delivered . Thanks a lot Jitendra. Keep Rocking
Learnt a lot from this video.
Thank You "BOSS"
Great video. Learnt in depth.
Good and very nice explaination sir
Great Video, Thanks so much Jacky!! regards from Mexico.
Thanks
Great Job Jacky
dzone.com/articles/integrating-okta-oauth-20-oidc-with-mulesoft-anypo
Thanks Jitendra , for proving wonderful session. I have one scenario , If an API had 4 resources,. and we configured 2 client applications for that API (say A and B) . my requirement is we need to Authorize Client A for some resources and methods, and We need to authorize client B for some resources . when I try to configure policy in API manager, its allowing to configure the policy for single scope., could you please put some light on these kind of scenario
Good one. One comment, for Mule 4.3, you have to change "Client provider" in your API proxy otherwise Open ID policy will not appear.
WHERE exactly do I need to change that?....unable to find it.
Hi Jitendra,
I was trying your video but unable to find OpenID Connect access token enforcement?
counld you make a tutorial on writing connector for okta? THat would be helpful
Good video. But my doubt is, does it make sense to use policy for oauth2 implementation if user of api(other api) have to manually generate token then use it instead of using client id and secret of Authorization? Then shouldn't we do manual implementation of oauth2 in api.
I can see the openId policy in Automated Policies but not able to see the policy in api manager application. I have attached OIDC instance to Env.
Great video, how to do the same for salesforce as oauth provider instead of okta ?
Hi Jithendra, Your videos are very useful. i am trying to apply the oAuth2.0 policy by using Okta. could you please suggest me what is the Access Token validation endpoint url in anypoint platform. Thanks in advance
You need to use JWT validation policy and jwks uri for validating token. I have published video on same.
Hi Jitendra,Can we use any other Identity Management service provider like PingFederate instead of Okta here?
Pralhad Poul I have published video on AWS Cognito as Identity Provider.
@@muletechnologyacademy-zero5625 I have seen your video AWS Cognito as Identity provide but my question to you is can we use PingFederate as Identity provider instead of AWS Cognito?
Hi Sir, Could you please explain how to apply PingFederate Policy in mule 4?
Hi Jitendra, I have configured the client provider but not getting OpenId policy listed in API manager. I have tried with both auto discovery and proxy of api. I am trying with anypoint trial account. Can you tell me what could have gone wrong? Thanks.
Hi, There has been changes made recently. You need to go to environment and attached oidc to that environment. You should able to see openid connect policy in app manager. Also.make sure you attached oidc to.api manager instances.
@@muletechnologyacademy-zero5625 Thanks Jitendra for reply. I had tried that as well. I have three environment dev, test, prod of types sandbox I have attached client provider to all three but still I am not getting the OpenId policy for active api instance in api manager. I only seeing a related policy "OAuth 2.0 access token enforcement using Mule OAuth provider" (including others) but not OpenId policy. Thanks.
I am able to resolved this by assigning client provider to api as well.
@@sanjeev.tripathi I had mentioned in my reply same thing. Assign to api also
@@muletechnologyacademy-zero5625 I didn't realise that when you mentioned "you attached oidc to.api manager instances". I thought you are talking about oidc policy in api instances (v1 etc) which I didn't get it in policy list in api manager. Once I assigned the client provider to api then I got the OpenID policy in list and was able to assign it to instance. Thanks for video.
Hi sir, how do we create poc in mulesoft?
You need to have all required software for doing proof of concept. But exactly what you are looking for?
Yes sir, exactly I need proof of concept
MADHU N can you please let me know what poc you are looking for?
Create an API with post method to call thirdparty api and return the same response.
Flow -
HttpListner(post method)
Transfromation
HttpRequester
Logger
Can you explain that scenario sir?