CYM-Identity allows you to identify and register the different APIs that your organization have, allowing you to grant or deny access to your applications. Refer to the
authorization section.
A Resource Server is the host of many Protected Resources or APIs.
- Navigate to CYM-Identity App > Clients Tab > New
- Choose the ClientResourceServer record type
You can fill in the required information following the
Resource Servers object reference.
Each ResourceServer must be assigned the scopes.
- Open the CYM-Identity App
- Open the Clients tab
- Navigate to the Resource_Server you have created
- Open the Scopes tab
- You need to assign the scopes that the ResourceServer is allowed to use
- You must assign the Audience scopes. Audience scopes are used to grant applications to this Resource Server as the audience of a request. If no Audience scopes are assigned, the ResourceServer cannot be used as an audience and only its protected resources can be used as resources.
- If the resource server need specific information in the introspection response, you can add the introspection scopes required to release the user claims
You can now start creating Protected Resources (APIs)
- Navigate to the Protected Resources tab in the Resource Server details page
- Click the New button
Each protected resource can be assigned specific scopes. Only applications which has been granted at least one of those scopes could request access to the APIs.
- Navigate to the Protected Resource you created
- Open the Scopes tab
Fill in the information and you are good to go. The API you just created can be used as resource
in authorization requests by your applications