Status
Active
This is the current version.
The following summarizes the system-based authorisation mode of accessing the PCA API:
- Applications (i.e. ClientSystems) obtain PCA API OAuth 2.0 access tokens from the PCA Identity and Access Manager using the OAuth 2.0 “client _credentials” grant type.
- The PCA Identity and Access Manager issues PCA API access tokens which are only valid for use for short time – no refresh tokens are issued.
- The scopes of the access token issued represent the Authorisations for which the ClientSystem is the subject.
The system-based authorisation mode of accessing the PCA API is shown in the figure below:
pca-system-based authorisation.png
