Provide an example for using token-exchange grant type with Keycloak and SonataFlow #1432
Assignees
Labels
area:sonataflow
Related to CNCF Serverless Workflow Spec and SonataFlow
Comments
ricardozanini
added
the
area:sonataflow
7 tasks
|
Done in the draft PR. |
github-project-automation
bot
moved this from 📋 Backlog
to 🎯 Done
in 🦉 KIE Podling Board
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
The Token Exchange RFC might help users who need our workflows to act on behalf of resource owners. For example, Alice wants to call a workflow to access the Pet Store. The data retrieved by the Pet Store must be related and owned by Alice.
Alice can send a request to the workflow containing her access ID to the Pet Store but not the authentication secrets (e.g., username and password). The workflow will use its service token to exchange for a valid one representing Alice in the Pet Store before calling any REST functions to the resource service.
Resources:
The text was updated successfully, but these errors were encountered: