Thing'in provide interconnection with external Identity Providers: Orange, Google and Liveobjects.
The Google and Orange IDP follow openIDP implementation, and the internconnection go through the OAuth v2 specification.
POST /users
Authorization : Bearer xxxxxxxx
{
"roles": [
"user"
],
"token": "token from idp oauth",
"domain": "xxx",
"external_provider": "google or orange"
}
During the creation, the core server validate the token by contacting the idp server and get information obout the user and store info like display name.
GET /auth
Authorization : Bearer "token from idp oauth"
The interconnection with Liveobjects is based on a validation of a given token. All the information of Liveobjects user (token get via auth and userid could be get thanks to the Liveobjects api : https://liveobjects.orange-business.com/swagger-ui/index.html).
The basic mechanism is described here:
POST /users
Authorization : Bearer xxxxxxxx
{
"roles": [
"user"
],
"token": "{LO_xapi_key}",
"domain": "xxx",
"external_provider": "liveobjects"
}
During the creation, the core server validate the token by contacting the livebjects server and get the login of the user and store it as the display name.
GET /auth?idp=liveobjects
Authorization : Bearer {LO_xapi_key}