Red Hat 3scale API Management Platform simplifies the integration between the APIcast gateway and Red Hat Single Sign-On through OpenID Connect (OIDC) for API authentication. Consequently, the new version enables API provider users to select and configure their API authentication process from the admin portal UI.
OpenID Connect (OIDC)
OpenID Connect 1.0 is a simple identity layer on top of the OAuth 2.0 protocol. It allows clients to verify the identity of the end user based on the authentication performed by an authorization server. Clients can also get basic profile information about the end user in an interoperable and REST-like way.
OpenID Connect allows clients of all types, including Web-based, mobile, and JavaScript clients, to request and receive information about authenticated sessions and end users. The specification suite is extensible, allowing participants to use optional features such as encryption of identity data, discovery of OpenID providers, and session management.
See http://openid.net/connect/faq/ for the Frequently Asked Questions about OpenID Connect.
Red Hat Single Sign-On
Red Hat Single Sign-On (RH-SSO) provides Web single sign-on and identity federation based on SAML 2.0, OpenID Connect, and OAuth 2.0 specifications.
In addition, RH-SSO supports the four basic OAuth 2.0 flows:
- Client credentials
- Authorization code
- Implicit grant
- Resource password owner
More information about RH-SSO can be found on the Red Hat product page.
What’s New in 3scale API Management 2.1
From this version on, API providers will be able to select OpenID Connect (OIDC) as the mechanism of authentication for APIs. They will be able to configure the OIDC integration from the admin portal UI service definition. API providers will also be able to add the OIDC issuer location from the authentication settings. Users can configure this setting per service, so they can set up different providers for each one of their APIs. As a result, API providers can use different security realms from the Identity Provider (IdP) per API provider account.
The new version of 3scale API Management adds Zync, a new part that takes care of synchronization between applications and the IdP, simplifying the communication of the different components of your architecture. Also, Zync will dynamically register the client in both systems.
In addition, users can secure the admin portal with RH-SSO. Previously, only the developer portal was able to connect with Red Hat Single Sign-On. Now, users can configure the same IdP for both portals.
Most noteworthy, makes it easier to integrate with other IdPs as long as they’re compliant with OIDC specification. Now adding other IdPs need more custom code for the integration. In future releases, the admin portal UI will offer support to configure them seamlessly.
Finally, Red Hat 3scale API Management 2.1 requires Red Hat Single Sign-On (RH-SSO) 7.1.2 or newer to add the new OpenID Connect integration. As these are the supported solution versions to carry out OAuth 2.0 from end to end.
Red Hat 3scale API Management Platform 2.1 is now available to try on-premise.
Resource Links
- Red Hat 3scale API Management Platform
- 3scale integration with RH-SSO using OIDC, product documentation
- Single Sign-on for the admin portal, product documentation
저자 소개
채널별 검색
오토메이션
기술, 팀, 인프라를 위한 IT 자동화 최신 동향
인공지능
고객이 어디서나 AI 워크로드를 실행할 수 있도록 지원하는 플랫폼 업데이트
오픈 하이브리드 클라우드
하이브리드 클라우드로 더욱 유연한 미래를 구축하는 방법을 알아보세요
보안
환경과 기술 전반에 걸쳐 리스크를 감소하는 방법에 대한 최신 정보
엣지 컴퓨팅
엣지에서의 운영을 단순화하는 플랫폼 업데이트
인프라
세계적으로 인정받은 기업용 Linux 플랫폼에 대한 최신 정보
애플리케이션
복잡한 애플리케이션에 대한 솔루션 더 보기
오리지널 쇼
엔터프라이즈 기술 분야의 제작자와 리더가 전하는 흥미로운 스토리
제품
- Red Hat Enterprise Linux
- Red Hat OpenShift Enterprise
- Red Hat Ansible Automation Platform
- 클라우드 서비스
- 모든 제품 보기
툴
체험, 구매 & 영업
커뮤니케이션
Red Hat 소개
Red Hat은 Linux, 클라우드, 컨테이너, 쿠버네티스 등을 포함한 글로벌 엔터프라이즈 오픈소스 솔루션 공급업체입니다. Red Hat은 코어 데이터센터에서 네트워크 엣지에 이르기까지 다양한 플랫폼과 환경에서 기업의 업무 편의성을 높여 주는 강화된 기능의 솔루션을 제공합니다.