Learn how to create an application in PingOne that is granted access to a generic OAuth resource server. Later, you’ll use this application to demonstrate protection against unauthorized access to a managed API service.
Create a banking application and its resources. You’ll use the banking application to represent every other API client on the internet that doesn’t have access to the Meme Game API.
First, add a banking resource in PingOne and give it an OAuth scope. Scopes determine the permissions for services that the application can access. Then, add a single page application in PingOne that represents your banking application. Grant permission for the banking application to access your banking resource.
Add the banking resource in PingOne:
- Go to + icon. and click the
For the Resource Name, enter Banking
App as a unique identifier for the resource.
- Click Next.
- In Attributes, you don't need to configure any attribute mappings, so click Next.
- To configure scopes, click + Add Scope.
For the Scope Name, enter
banking as an identifier for the scope, and
then enter a meaningful Description.
You’re ready to add a single page banking application in PingOne.
Add the banking application in PingOne:
- Go to + icon to add an application. and click the
- For the Application Name, enter AAM Tutorial Banking Client as a unique identifier for the application, and then enter a meaningful Description.
For the Application Type, click
- Click Save.
To enable the application, click the Enable
Configure the banking application to act as an API client without any notion of
Later, this makes testing easier because you won't have to configure users.
- On the Configuration tab, click the Pencil icon.
Under Grant Type, select the Client
Credentials check box, and then under Token
Endpoint Authentication Method, click the
Client Secret Basic option.
For Redirect URIs, enter the following
This enables you to sign on as a user from Postman in a later tutorial.
- Click Save.
Grant an OAuth scope to your application.
This allows your application to access banking APIs.
- Click the Resources tab, and then click the Pencil icon.
Select the banking check box.
Keep the banking application open in PingOne for now. You’ll need it in the next task.
You added a single page application in PingOne to represent your banking application and configured it for access to the banking resource.
You’re ready to get an access token for the banking application so it can make calls to APIs.