[EDGINREACH-2] Provide "Third Party" OAuth2 Token Endpoint for Central Server Authentication to FOLIO - FOLIO Issue Tracker

XML

Word

Printable

Details

Type: Story
Status: Closed (View Workflow)
Priority: P1
Resolution: Done
Affects Version/s: None
Fix Version/s: 1.0.0
Labels:
- back-end
- epam-volaris

Template:
Sprint:
Volaris Sprint 114, Volaris Sprint 115, Volaris Sprint 116, Volaris Sprint 117
Story Points:
8
Development Team:
Volaris
Release:
R3 2021

Description

Purpose/Overview:
The D2IR API specification requires that the 3rd-party ILS/LSP integrating with INN-Reach provide an OAuth2 token endpoint to provide bearer auth tokens when presented with a valid HTTP Basic authentication request.

Requirements/Scope:

Requirement

API endpoint: /innreach/v2/oauth2/token (POST)

Request headers:

Accept	String	Yes	Acceptable value: application/json
Authorization	String	Yes	Authorization in form <token_type> <access_token> as returned by the authorization request
Content-Type	String	Yes	Acceptable value: application/json
X-From-Code	String	Yes	Central/local code of sending system (five-character code). The library needs only its own local code and the code for any central systems in which it participates.
X-Request-Creation-Time	Integer	Yes	Epoch UNIX time stamp, for example: 1544466568
X-To-Code	String	Yes	Central/local code of destination system (five-character code). The library needs only its own local code and the code for any central systems in which it participates.

Request Parameters:
- grant_type=client_credentials
- scope=innreach_tp
Return 200 Ok and Bearer auth token if key/secret are valid for the X-From-Code system
Return 400 Bad Request if request headers missing are missing or incorrect
Return 401 Unauthorized if key/secret are incorrect

Approach:

Acceptance criteria:

AC: Central server providing correct key/secret pair with all required HTTP header values is able to successfully obtain a valid Bearer auth token
```
// 200 OK
{
    "access_token": "06b42df732f628ae2c3764d86073cd76", 
    "token_type": "Bearer",
    "expires_in": 599
}
```

AC: Central server providing an incorrect key/secret pair receives an HTTP response code 401 Unauthorized

// 401 Unauthorized 
{
   "error": "invalid_token",
   "error_description": "Token authentication failed"
}

AC: Central server providing correct or incorrect key/secret pair with malformed or missing required HTTP header values receives a 400 Bad Request error
```
// 400 Bad Request 
{
   "error": "invalid_request",
   "error_description": "The scope parameter is required." 
}
```

TestRail: Results

Attachments

Issue Links

defines

UXPROD-2672 Implement "Third Party" OAuth2 Token Endpoint for D2IR (INN-Reach)

Closed

is blocked by

MODINREACH-72 Prepare institutional user for the EDGE module to provide access to application gateway

Draft

relates to

FOLIO-2551 SPIKE: System and Tenant Level Users - Requirements

Closed

MODINREACH-68 Key/Secret authentication REST endpoint

Closed

mentioned in: Page Loading...

Wiki Page: Wiki Page Loading...

(1 Wiki Page)

Activity

People

Assignee:: Andrii Khodyka

Reporter:: Brooks Travis

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 23/Mar/21 3:38 PM

Updated:: 19/Oct/21 3:04 PM

Resolved:: 23/Jun/21 8:54 AM

Provide "Third Party" OAuth2 Token Endpoint for Central Server Authentication to FOLIO