Uploaded image for project: 'MusicBrainz Server'
  1. MusicBrainz Server
  2. MBS-13703

Recognize tokens issued by the MeB OAuth Provider

XMLWordPrintable

    • Icon: Task Task
    • Resolution: Fixed
    • Icon: Normal Normal
    • 2024-08-12
    • None
    • Back-end
    • None

      1. Create an application for interacting with new OAuth provider.
      2. Any OAuth token received by MB that begins with meba_ should be checked against the new MeB OAuth provider.
      3. To check a token against the MeB OAuth provider, call the https://test.metabrainz.org/new-oauth2/introspect endpoint with client_id, client_secret (from first step) and received OAuth2 token as form data in body.
      4. The received response is 403 for an invalid/expired token.
      5. If the received response is 200, then check the scope field in the JSON response and see if the resource the token is trying to access has the requested scope.

            bitmap Michael Wiencek
            kartik1712 amCap1712
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated:
              Resolved:

                Version Package
                2024-08-12