OAuth
OAuth authentication is available on all server types.
There are three major components to OAuth:
The Authorization Server, which authenticates a client and provides an Access Token.
The Access Token, which is included in requests to the Resource Server.
The Resource Server, which validates the Access Token and sends the requested resources to the client. MarkLogic Server is a Resource Server.
This is the OAuth authentication workflow:
The user sends their credentials to the client.
The client sends the user credentials to the Authorization Server: the OAuth vendor acting as the external agent.
The Authorization Server validates the user credentials.
The Authorization Server sends an Access Token to the client.
The client sends a resource request that includes the Access Token to the Resource Server: MarkLogic Server.
The Resource Server validates the Access Token.
The Resource Server sends the requested resources to the client.
To use OAuth, you must also configure External Security.
OAuth can be used only with the OAuth authorization scheme.