OAuth 2.0 Endpoints
When acting as an OAuth 2.0 authorization server, AM exposes the following endpoints:
|Obtain consent and an authorization grant (RFC 6749 authorization endpoint)|
|Initiate backchannel authorization (Backchannel flow endpoint)|
|Obtain an access token (RFC 6749 token endpoint)|
|Obtain a device code (Device flow endpoint)|
|Obtain consent and authorization grant (Device flow endpoint)|
|Revoke both access and refresh tokens (RFC 7009 endpoint)|
|Retrieve metadata about a token, such as approved scopes and the context in which the token was issued (RFC 7662 endpoint)|
|Retrieve metadata about a macaroon, and add caveats.|
As an OAuth 2.0/OpenID Connect/UMA provider, AM also exposes the following:
OAuth 2.0 endpoints to perform administrative tasks, such as creating clients. For more information, see OAuth 2.0 Administration and Supporting REST Endpoints
OpenID Connect-specific endpoints. For more information, see OpenID Connect 1.0 Endpoints.
UMA-specific endpoints. For more information, see UMA Endpoints.