3Scale with OIDC/Oauth2 implicit flow

[pim.g...@gmail.com]

By default the authorization grant flow is used when using OIDC with 3Scale and Red Hat SSO. Using other grant flows is scarcely documented, found a mention in the Red Hat documentation that is is supported: https://access.redhat.com/documentation/en-us/red_hat_3scale/2.saas/html/api_authentication/oauth2 and found an excellent blog from Robert Broeckelmann using another the implicit grant flow. https://medium.com/@robert.broeckelmann/oauth2-implicit-grant-with-3scale-and-red-hat-sso-22f96e8ba939 

However the last post only focusses on the client part and not the 3Scale SSO part. I know how to enable other grant flows for a client in Red Hat SSO manually, however I would like to change the default, which is set to authorization grant flow only to also include the implicit flow. So all newly created clients in Red Hat SSO can use the implicit grant flow as well. 

Does anyone know how to change the default settings for clients created in Red Hat SSO from 3Scale?

thanks,

Pim

[Kevin Price]

Hi Pim,

For now the default remains Auntirization Code grant that is enabled. All the flows are supported but you will need to update the client(s) in RH SSO manually or scripted on the API to update the enabled flows. There is already an internal issue open to make this configurable from 3scale.

Cheers,
Kevin

[miles.a...@gmail.com]

Hi Kevin and Pim,

I'm currently recruiting looking for a 3scale consultant to work for my client Red Hat, working on site with their end-client based in Bonn, Germany. 

Please get in contact with me if this is a position you would be interested in hearing more about!

Thanks,

Miles