{"id":2507,"date":"2022-02-28T12:00:00","date_gmt":"2022-02-28T17:00:00","guid":{"rendered":"https:\/\/michaelrowe01.com\/?p=2507"},"modified":"2022-12-15T06:45:59","modified_gmt":"2022-12-15T11:45:59","slug":"api-authentication-method-in-elm-oidc","status":"publish","type":"post","link":"https:\/\/michaelrowe01.com\/index.php\/day-job\/ibm-elm\/api-authentication-method-in-elm-oidc\/","title":{"rendered":"API Authentication Method in ELM &#8211; OIDC"},"content":{"rendered":"\n<div class=\"wp-block-cover\"><span aria-hidden=\"true\" class=\"wp-block-cover__gradient-background has-background-dim\"><\/span><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" width=\"660\" height=\"440\" data-attachment-id=\"2508\" data-permalink=\"https:\/\/michaelrowe01.com\/index.php\/day-job\/ibm-elm\/api-authentication-method-in-elm-oidc\/attachment\/image-23\/\" data-orig-file=\"https:\/\/i0.wp.com\/michaelrowe01.com\/wp-content\/uploads\/2022\/02\/image-23.png?fit=4096%2C2730&amp;ssl=1\" data-orig-size=\"4096,2730\" data-comments-opened=\"1\" data-image-meta=\"{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}\" data-image-title=\"image-23\" data-image-description=\"\" data-image-caption=\"\" data-large-file=\"https:\/\/i0.wp.com\/michaelrowe01.com\/wp-content\/uploads\/2022\/02\/image-23.png?fit=660%2C440&amp;ssl=1\" class=\"wp-block-cover__image-background wp-image-2508\" alt=\"\" src=\"https:\/\/i0.wp.com\/michaelrowe01.com\/wp-content\/uploads\/2022\/02\/image-23.png?resize=660%2C440&#038;ssl=1\" data-object-fit=\"cover\" srcset=\"https:\/\/i0.wp.com\/michaelrowe01.com\/wp-content\/uploads\/2022\/02\/image-23.png?resize=1024%2C683&amp;ssl=1 1024w, https:\/\/i0.wp.com\/michaelrowe01.com\/wp-content\/uploads\/2022\/02\/image-23.png?resize=300%2C200&amp;ssl=1 300w, https:\/\/i0.wp.com\/michaelrowe01.com\/wp-content\/uploads\/2022\/02\/image-23.png?resize=768%2C512&amp;ssl=1 768w, https:\/\/i0.wp.com\/michaelrowe01.com\/wp-content\/uploads\/2022\/02\/image-23.png?w=1320&amp;ssl=1 1320w, https:\/\/i0.wp.com\/michaelrowe01.com\/wp-content\/uploads\/2022\/02\/image-23.png?w=1980&amp;ssl=1 1980w\" sizes=\"auto, (max-width: 660px) 100vw, 660px\" \/><div class=\"wp-block-cover__inner-container is-layout-flow wp-block-cover-is-layout-flow\">\n<p class=\"has-large-font-size wp-block-paragraph\">Security and ELM<\/p>\n<\/div><\/div>\n\n\n\n<p class=\"wp-block-paragraph\">In my last post I took you thru the OAuth 1.0a API flow.&nbsp; While there are three APIs defined in the RootServices document which enable you to execute the flow, it is still a lot of work to ultimately get your OAuth 1.0a Token for usage.&nbsp; This token is only valid for a short period of time, meaning your code need to constantly check for its availability, and once it fails, you need to process the same steps again to gain a new token.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Now let\u2019s look at using OIDC authentication.&nbsp;<\/p>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>Initial Setup<\/strong><\/h4>\n\n\n\n<p class=\"wp-block-paragraph\">First, our ELM instance must be configured to utilize a Jazz Authentication Server (JAS).&nbsp; That configuration is beyond the scope of this blog, but I highly recommend Shubjit Naik\u2019s article on <a href=\"https:\/\/jazz.net\/wiki\/bin\/view\/Deployment\/ELMAndOAuth20ServerToServer\">ELM and OAuth 2.0 Server to Server communication via Client Credentials Grant<\/a>.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">After following those instructions, your ELM Admin will have to provide you with key information to be used in this flow.<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>grant_type<\/li><li>client_id<\/li><li>client_secret<\/li><li>scope<\/li><\/ul>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>Requesting a Token<\/strong><\/h4>\n\n\n\n<p class=\"wp-block-paragraph\">As you may recall from the prior post, the RootServices document holds the information we need for OAuth 1.0a authentication; however, this does not hold true for OIDC.&nbsp; You will need to get the URL for the \u201caccess token request\u201d end point from your ELM application admin.&nbsp; The endpoint can be found via the Server admin page, under the \u201cThe Authorization Server\u201d<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" width=\"660\" height=\"453\" data-attachment-id=\"2509\" data-permalink=\"https:\/\/michaelrowe01.com\/index.php\/day-job\/ibm-elm\/api-authentication-method-in-elm-oidc\/attachment\/image-24\/\" data-orig-file=\"https:\/\/i0.wp.com\/michaelrowe01.com\/wp-content\/uploads\/2022\/02\/image-24.png?fit=2530%2C1736&amp;ssl=1\" data-orig-size=\"2530,1736\" data-comments-opened=\"1\" data-image-meta=\"{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}\" data-image-title=\"image-24\" data-image-description=\"\" data-image-caption=\"\" data-large-file=\"https:\/\/i0.wp.com\/michaelrowe01.com\/wp-content\/uploads\/2022\/02\/image-24.png?fit=660%2C453&amp;ssl=1\" src=\"https:\/\/i0.wp.com\/michaelrowe01.com\/wp-content\/uploads\/2022\/02\/image-24.png?resize=660%2C453&#038;ssl=1\" alt=\"\" class=\"wp-image-2509\" srcset=\"https:\/\/i0.wp.com\/michaelrowe01.com\/wp-content\/uploads\/2022\/02\/image-24.png?resize=1024%2C703&amp;ssl=1 1024w, https:\/\/i0.wp.com\/michaelrowe01.com\/wp-content\/uploads\/2022\/02\/image-24.png?resize=300%2C206&amp;ssl=1 300w, https:\/\/i0.wp.com\/michaelrowe01.com\/wp-content\/uploads\/2022\/02\/image-24.png?resize=768%2C527&amp;ssl=1 768w, https:\/\/i0.wp.com\/michaelrowe01.com\/wp-content\/uploads\/2022\/02\/image-24.png?resize=1536%2C1054&amp;ssl=1 1536w, https:\/\/i0.wp.com\/michaelrowe01.com\/wp-content\/uploads\/2022\/02\/image-24.png?resize=2048%2C1405&amp;ssl=1 2048w, https:\/\/i0.wp.com\/michaelrowe01.com\/wp-content\/uploads\/2022\/02\/image-24.png?w=1320&amp;ssl=1 1320w, https:\/\/i0.wp.com\/michaelrowe01.com\/wp-content\/uploads\/2022\/02\/image-24.png?w=1980&amp;ssl=1 1980w\" sizes=\"auto, (max-width: 660px) 100vw, 660px\" \/><figcaption>ELM Server Status Summary<\/figcaption><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">If we add \/token to the end of the above URL, we now have the request Token API endpoint.<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" width=\"660\" height=\"476\" data-attachment-id=\"2510\" data-permalink=\"https:\/\/michaelrowe01.com\/index.php\/day-job\/ibm-elm\/api-authentication-method-in-elm-oidc\/attachment\/image-25\/\" data-orig-file=\"https:\/\/i0.wp.com\/michaelrowe01.com\/wp-content\/uploads\/2022\/02\/image-25.png?fit=1316%2C950&amp;ssl=1\" data-orig-size=\"1316,950\" data-comments-opened=\"1\" data-image-meta=\"{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}\" data-image-title=\"image-25\" data-image-description=\"\" data-image-caption=\"\" data-large-file=\"https:\/\/i0.wp.com\/michaelrowe01.com\/wp-content\/uploads\/2022\/02\/image-25.png?fit=660%2C476&amp;ssl=1\" src=\"https:\/\/i0.wp.com\/michaelrowe01.com\/wp-content\/uploads\/2022\/02\/image-25.png?resize=660%2C476&#038;ssl=1\" alt=\"\" class=\"wp-image-2510\" srcset=\"https:\/\/i0.wp.com\/michaelrowe01.com\/wp-content\/uploads\/2022\/02\/image-25.png?resize=1024%2C739&amp;ssl=1 1024w, https:\/\/i0.wp.com\/michaelrowe01.com\/wp-content\/uploads\/2022\/02\/image-25.png?resize=300%2C217&amp;ssl=1 300w, https:\/\/i0.wp.com\/michaelrowe01.com\/wp-content\/uploads\/2022\/02\/image-25.png?resize=768%2C554&amp;ssl=1 768w, https:\/\/i0.wp.com\/michaelrowe01.com\/wp-content\/uploads\/2022\/02\/image-25.png?w=1316&amp;ssl=1 1316w\" sizes=\"auto, (max-width: 660px) 100vw, 660px\" \/><figcaption>Request Token API on JAS server<\/figcaption><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">You can see the API is very simple.&nbsp; We are passing the a grant request of \u201cclient_credentials\u201d, with a client_id of \u201csecret2\u201d (which our ELM admin setup for us), a client_secret of \u201csecret\u201d, and asking for scope of \u201copenid profile email general\u201d.&nbsp; These are all encoded in a url form.&nbsp; The response that comes back is a simple json, as follows:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>{\n    \"access_token\": \"<strong>6SnfUJgdMFHb4bj5Z6XO65Ay2bGidMfvDWmpgiLu<\/strong>\",\n    \"token_type\": \"<strong>Bearer<\/strong>\",\n    \"expires_in\": <strong>7200<\/strong>,\n    \"scope\": \"<strong>general openid profile email<\/strong>\"\n}<\/code><\/pre>\n\n\n\n<p class=\"wp-block-paragraph\">We receive a \u201cBearer\u201d token, which expires in 7200 seconds.&nbsp; It also confirms the scope we have asked for. &nbsp;<\/p>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>Calling a protected API<\/strong><\/h4>\n\n\n\n<p class=\"wp-block-paragraph\">Next we will call an API that requires authentication.&nbsp; I will use the same API from the prior post, accessing a list of Project Areas on our server.<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>curl --location --request GET 'https:\/\/elmwb.com:9443\/rm\/process\/project-areas' \\\n--header 'OSLC-Core-Version: 2.0' \\\n--header 'Accept: application\/json' \\\n--header 'Authorization: <strong>Bearer<\/strong> <strong>6SnfUJgdMFHb4bj5Z6XO65Ay2bGidMfvDWmpgiLu<\/strong>\u2019<\/code><\/pre>\n\n\n\n<p class=\"wp-block-paragraph\">As you can, all we did is change our call to provide the authorization via a new header. This is much easier (and quicker) than the steps required in OAuth1.0a.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">If you are familiar with Postman, here are two files to help you process these same steps:<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Postman Environment File \u2013 <a href=\"https:\/\/michaelrowe01.com\/wp-content\/uploads\/2022\/02\/OIDC-Demo-Environment.postman_environment.json_.zip\" title=\"OIDC Demo Environment\">OIDC Demo Environment<\/a><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Postman API Collection \u2013&nbsp;<a href=\"https:\/\/michaelrowe01.com\/wp-content\/uploads\/2022\/02\/OIDC-Flow.postman_collection.json_.zip\" title=\"OIDC Flow\">OIDC Flow<\/a><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">That\u2019s it!&nbsp; If you have the opportunity on your server to setup the Jazz Authentication Server, I highly recommend that you utilize OIDC for your API which require authentication.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>In my last post I took you thru the OAuth 1.0a API flow.&nbsp; While there are three APIs defined in the RootServices document which enable you to execute the flow, it is still a lot of work to ultimately get your OAuth 1.0a Token for usage.&nbsp; This token is only valid for a short period [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_wp_convertkit_post_meta":{"form":"-1","landing_page":"0","tag":"0","restrict_content":"0"},"hide_page_title":"","_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_feature_clip_id":0,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2},"jetpack_post_was_ever_published":false},"categories":[597],"tags":[575,578,613,614,356],"class_list":["post-2507","post","type-post","status-publish","format-standard","hentry","category-ibm-elm","tag-api","tag-apis","tag-authentication","tag-oidc","tag-security"],"aioseo_notices":[],"aioseo_head":"\n\t\t<!-- All in One SEO 4.9.10 - aioseo.com -->\n\t<meta name=\"robots\" content=\"max-image-preview:large\" \/>\n\t<meta name=\"author\" content=\"Michael Rowe\"\/>\n\t<link rel=\"canonical\" href=\"https:\/\/michaelrowe01.com\/index.php\/day-job\/ibm-elm\/api-authentication-method-in-elm-oidc\/\" \/>\n\t<meta name=\"generator\" content=\"All in One SEO (AIOSEO) 4.9.10\" \/>\n\t\t<meta property=\"og:locale\" content=\"en_US\" \/>\n\t\t<meta property=\"og:site_name\" content=\"Random Thoughts | A blog about things that interest me.\" \/>\n\t\t<meta property=\"og:type\" content=\"article\" \/>\n\t\t<meta property=\"og:title\" content=\"API Authentication Method in ELM \u2013 OIDC | Random Thoughts\" \/>\n\t\t<meta property=\"og:url\" content=\"https:\/\/michaelrowe01.com\/index.php\/day-job\/ibm-elm\/api-authentication-method-in-elm-oidc\/\" \/>\n\t\t<meta property=\"og:image\" content=\"https:\/\/michaelrowe01.com\/wp-content\/uploads\/2019\/04\/img_0391.jpg\" \/>\n\t\t<meta property=\"og:image:secure_url\" content=\"https:\/\/michaelrowe01.com\/wp-content\/uploads\/2019\/04\/img_0391.jpg\" \/>\n\t\t<meta property=\"og:image:width\" content=\"3088\" \/>\n\t\t<meta property=\"og:image:height\" content=\"2316\" \/>\n\t\t<meta property=\"article:published_time\" content=\"2022-02-28T17:00:00+00:00\" \/>\n\t\t<meta property=\"article:modified_time\" content=\"2022-12-15T11:45:59+00:00\" \/>\n\t\t<meta name=\"twitter:card\" content=\"summary\" \/>\n\t\t<meta name=\"twitter:title\" content=\"API Authentication Method in ELM \u2013 OIDC | Random Thoughts\" \/>\n\t\t<meta name=\"twitter:image\" content=\"https:\/\/michaelrowe01.com\/wp-content\/uploads\/2019\/04\/img_0391.jpg\" \/>\n\t\t<script type=\"application\/ld+json\" class=\"aioseo-schema\">\n\t\t\t{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/michaelrowe01.com\\\/index.php\\\/day-job\\\/ibm-elm\\\/api-authentication-method-in-elm-oidc\\\/#article\",\"name\":\"API Authentication Method in ELM \\u2013 OIDC | Random Thoughts\",\"headline\":\"API Authentication Method in ELM &#8211; OIDC\",\"author\":{\"@id\":\"https:\\\/\\\/michaelrowe01.com\\\/index.php\\\/author\\\/michaelrowe\\\/#author\"},\"publisher\":{\"@id\":\"https:\\\/\\\/michaelrowe01.com\\\/#organization\"},\"image\":{\"@type\":\"ImageObject\",\"url\":\"https:\\\/\\\/i0.wp.com\\\/michaelrowe01.com\\\/wp-content\\\/uploads\\\/2022\\\/02\\\/image-23.png?fit=4096%2C2730&ssl=1\",\"@id\":\"https:\\\/\\\/michaelrowe01.com\\\/index.php\\\/day-job\\\/ibm-elm\\\/api-authentication-method-in-elm-oidc\\\/#articleImage\",\"width\":4096,\"height\":2730},\"datePublished\":\"2022-02-28T12:00:00-05:00\",\"dateModified\":\"2022-12-15T06:45:59-05:00\",\"inLanguage\":\"en-US\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/michaelrowe01.com\\\/index.php\\\/day-job\\\/ibm-elm\\\/api-authentication-method-in-elm-oidc\\\/#webpage\"},\"isPartOf\":{\"@id\":\"https:\\\/\\\/michaelrowe01.com\\\/index.php\\\/day-job\\\/ibm-elm\\\/api-authentication-method-in-elm-oidc\\\/#webpage\"},\"articleSection\":\"ELM, API, APIs, Authentication, oidc, security\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/michaelrowe01.com\\\/index.php\\\/day-job\\\/ibm-elm\\\/api-authentication-method-in-elm-oidc\\\/#breadcrumblist\",\"itemListElement\":[{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/michaelrowe01.com#listItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/michaelrowe01.com\",\"nextItem\":{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/michaelrowe01.com\\\/index.php\\\/category\\\/day-job\\\/#listItem\",\"name\":\"day-job\"}},{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/michaelrowe01.com\\\/index.php\\\/category\\\/day-job\\\/#listItem\",\"position\":2,\"name\":\"day-job\",\"item\":\"https:\\\/\\\/michaelrowe01.com\\\/index.php\\\/category\\\/day-job\\\/\",\"nextItem\":{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/michaelrowe01.com\\\/index.php\\\/category\\\/day-job\\\/ibm-elm\\\/#listItem\",\"name\":\"ELM\"},\"previousItem\":{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/michaelrowe01.com#listItem\",\"name\":\"Home\"}},{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/michaelrowe01.com\\\/index.php\\\/category\\\/day-job\\\/ibm-elm\\\/#listItem\",\"position\":3,\"name\":\"ELM\",\"item\":\"https:\\\/\\\/michaelrowe01.com\\\/index.php\\\/category\\\/day-job\\\/ibm-elm\\\/\",\"nextItem\":{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/michaelrowe01.com\\\/index.php\\\/day-job\\\/ibm-elm\\\/api-authentication-method-in-elm-oidc\\\/#listItem\",\"name\":\"API Authentication Method in ELM &#8211; OIDC\"},\"previousItem\":{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/michaelrowe01.com\\\/index.php\\\/category\\\/day-job\\\/#listItem\",\"name\":\"day-job\"}},{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/michaelrowe01.com\\\/index.php\\\/day-job\\\/ibm-elm\\\/api-authentication-method-in-elm-oidc\\\/#listItem\",\"position\":4,\"name\":\"API Authentication Method in ELM &#8211; OIDC\",\"previousItem\":{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/michaelrowe01.com\\\/index.php\\\/category\\\/day-job\\\/ibm-elm\\\/#listItem\",\"name\":\"ELM\"}}]},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/michaelrowe01.com\\\/#organization\",\"name\":\"Michael Rowe\",\"description\":\"A blog about things that interest me.\",\"url\":\"https:\\\/\\\/michaelrowe01.com\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"url\":\"https:\\\/\\\/i0.wp.com\\\/michaelrowe01.com\\\/wp-content\\\/uploads\\\/2024\\\/11\\\/IMG_0120.jpeg?fit=1024%2C1024&ssl=1\",\"@id\":\"https:\\\/\\\/michaelrowe01.com\\\/index.php\\\/day-job\\\/ibm-elm\\\/api-authentication-method-in-elm-oidc\\\/#organizationLogo\",\"width\":1024,\"height\":1024},\"image\":{\"@id\":\"https:\\\/\\\/michaelrowe01.com\\\/index.php\\\/day-job\\\/ibm-elm\\\/api-authentication-method-in-elm-oidc\\\/#organizationLogo\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/michaelrowe01.com\\\/index.php\\\/author\\\/michaelrowe\\\/#author\",\"url\":\"https:\\\/\\\/michaelrowe01.com\\\/index.php\\\/author\\\/michaelrowe\\\/\",\"name\":\"Michael Rowe\",\"image\":{\"@type\":\"ImageObject\",\"@id\":\"https:\\\/\\\/michaelrowe01.com\\\/index.php\\\/day-job\\\/ibm-elm\\\/api-authentication-method-in-elm-oidc\\\/#authorImage\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/23f6c08c7576fa07e47f582da2eb7619aeb556ceddf53a274fdb9069926e5bc1?s=96&r=g\",\"width\":96,\"height\":96,\"caption\":\"Michael Rowe\"}},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/michaelrowe01.com\\\/index.php\\\/day-job\\\/ibm-elm\\\/api-authentication-method-in-elm-oidc\\\/#webpage\",\"url\":\"https:\\\/\\\/michaelrowe01.com\\\/index.php\\\/day-job\\\/ibm-elm\\\/api-authentication-method-in-elm-oidc\\\/\",\"name\":\"API Authentication Method in ELM \\u2013 OIDC | Random Thoughts\",\"inLanguage\":\"en-US\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/michaelrowe01.com\\\/#website\"},\"breadcrumb\":{\"@id\":\"https:\\\/\\\/michaelrowe01.com\\\/index.php\\\/day-job\\\/ibm-elm\\\/api-authentication-method-in-elm-oidc\\\/#breadcrumblist\"},\"author\":{\"@id\":\"https:\\\/\\\/michaelrowe01.com\\\/index.php\\\/author\\\/michaelrowe\\\/#author\"},\"creator\":{\"@id\":\"https:\\\/\\\/michaelrowe01.com\\\/index.php\\\/author\\\/michaelrowe\\\/#author\"},\"datePublished\":\"2022-02-28T12:00:00-05:00\",\"dateModified\":\"2022-12-15T06:45:59-05:00\"},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/michaelrowe01.com\\\/#website\",\"url\":\"https:\\\/\\\/michaelrowe01.com\\\/\",\"name\":\"Random Thoughts\",\"description\":\"A blog about things that interest me.\",\"inLanguage\":\"en-US\",\"publisher\":{\"@id\":\"https:\\\/\\\/michaelrowe01.com\\\/#organization\"}}]}\n\t\t<\/script>\n\t\t<!-- All in One SEO -->\n\n","aioseo_head_json":{"title":"API Authentication Method in ELM \u2013 OIDC | Random Thoughts","description":"","canonical_url":"https:\/\/michaelrowe01.com\/index.php\/day-job\/ibm-elm\/api-authentication-method-in-elm-oidc\/","robots":"max-image-preview:large","keywords":"","webmasterTools":{"miscellaneous":""},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/michaelrowe01.com\/index.php\/day-job\/ibm-elm\/api-authentication-method-in-elm-oidc\/#article","name":"API Authentication Method in ELM \u2013 OIDC | Random Thoughts","headline":"API Authentication Method in ELM &#8211; OIDC","author":{"@id":"https:\/\/michaelrowe01.com\/index.php\/author\/michaelrowe\/#author"},"publisher":{"@id":"https:\/\/michaelrowe01.com\/#organization"},"image":{"@type":"ImageObject","url":"https:\/\/i0.wp.com\/michaelrowe01.com\/wp-content\/uploads\/2022\/02\/image-23.png?fit=4096%2C2730&ssl=1","@id":"https:\/\/michaelrowe01.com\/index.php\/day-job\/ibm-elm\/api-authentication-method-in-elm-oidc\/#articleImage","width":4096,"height":2730},"datePublished":"2022-02-28T12:00:00-05:00","dateModified":"2022-12-15T06:45:59-05:00","inLanguage":"en-US","mainEntityOfPage":{"@id":"https:\/\/michaelrowe01.com\/index.php\/day-job\/ibm-elm\/api-authentication-method-in-elm-oidc\/#webpage"},"isPartOf":{"@id":"https:\/\/michaelrowe01.com\/index.php\/day-job\/ibm-elm\/api-authentication-method-in-elm-oidc\/#webpage"},"articleSection":"ELM, API, APIs, Authentication, oidc, security"},{"@type":"BreadcrumbList","@id":"https:\/\/michaelrowe01.com\/index.php\/day-job\/ibm-elm\/api-authentication-method-in-elm-oidc\/#breadcrumblist","itemListElement":[{"@type":"ListItem","@id":"https:\/\/michaelrowe01.com#listItem","position":1,"name":"Home","item":"https:\/\/michaelrowe01.com","nextItem":{"@type":"ListItem","@id":"https:\/\/michaelrowe01.com\/index.php\/category\/day-job\/#listItem","name":"day-job"}},{"@type":"ListItem","@id":"https:\/\/michaelrowe01.com\/index.php\/category\/day-job\/#listItem","position":2,"name":"day-job","item":"https:\/\/michaelrowe01.com\/index.php\/category\/day-job\/","nextItem":{"@type":"ListItem","@id":"https:\/\/michaelrowe01.com\/index.php\/category\/day-job\/ibm-elm\/#listItem","name":"ELM"},"previousItem":{"@type":"ListItem","@id":"https:\/\/michaelrowe01.com#listItem","name":"Home"}},{"@type":"ListItem","@id":"https:\/\/michaelrowe01.com\/index.php\/category\/day-job\/ibm-elm\/#listItem","position":3,"name":"ELM","item":"https:\/\/michaelrowe01.com\/index.php\/category\/day-job\/ibm-elm\/","nextItem":{"@type":"ListItem","@id":"https:\/\/michaelrowe01.com\/index.php\/day-job\/ibm-elm\/api-authentication-method-in-elm-oidc\/#listItem","name":"API Authentication Method in ELM &#8211; OIDC"},"previousItem":{"@type":"ListItem","@id":"https:\/\/michaelrowe01.com\/index.php\/category\/day-job\/#listItem","name":"day-job"}},{"@type":"ListItem","@id":"https:\/\/michaelrowe01.com\/index.php\/day-job\/ibm-elm\/api-authentication-method-in-elm-oidc\/#listItem","position":4,"name":"API Authentication Method in ELM &#8211; OIDC","previousItem":{"@type":"ListItem","@id":"https:\/\/michaelrowe01.com\/index.php\/category\/day-job\/ibm-elm\/#listItem","name":"ELM"}}]},{"@type":"Organization","@id":"https:\/\/michaelrowe01.com\/#organization","name":"Michael Rowe","description":"A blog about things that interest me.","url":"https:\/\/michaelrowe01.com\/","logo":{"@type":"ImageObject","url":"https:\/\/i0.wp.com\/michaelrowe01.com\/wp-content\/uploads\/2024\/11\/IMG_0120.jpeg?fit=1024%2C1024&ssl=1","@id":"https:\/\/michaelrowe01.com\/index.php\/day-job\/ibm-elm\/api-authentication-method-in-elm-oidc\/#organizationLogo","width":1024,"height":1024},"image":{"@id":"https:\/\/michaelrowe01.com\/index.php\/day-job\/ibm-elm\/api-authentication-method-in-elm-oidc\/#organizationLogo"}},{"@type":"Person","@id":"https:\/\/michaelrowe01.com\/index.php\/author\/michaelrowe\/#author","url":"https:\/\/michaelrowe01.com\/index.php\/author\/michaelrowe\/","name":"Michael Rowe","image":{"@type":"ImageObject","@id":"https:\/\/michaelrowe01.com\/index.php\/day-job\/ibm-elm\/api-authentication-method-in-elm-oidc\/#authorImage","url":"https:\/\/secure.gravatar.com\/avatar\/23f6c08c7576fa07e47f582da2eb7619aeb556ceddf53a274fdb9069926e5bc1?s=96&r=g","width":96,"height":96,"caption":"Michael Rowe"}},{"@type":"WebPage","@id":"https:\/\/michaelrowe01.com\/index.php\/day-job\/ibm-elm\/api-authentication-method-in-elm-oidc\/#webpage","url":"https:\/\/michaelrowe01.com\/index.php\/day-job\/ibm-elm\/api-authentication-method-in-elm-oidc\/","name":"API Authentication Method in ELM \u2013 OIDC | Random Thoughts","inLanguage":"en-US","isPartOf":{"@id":"https:\/\/michaelrowe01.com\/#website"},"breadcrumb":{"@id":"https:\/\/michaelrowe01.com\/index.php\/day-job\/ibm-elm\/api-authentication-method-in-elm-oidc\/#breadcrumblist"},"author":{"@id":"https:\/\/michaelrowe01.com\/index.php\/author\/michaelrowe\/#author"},"creator":{"@id":"https:\/\/michaelrowe01.com\/index.php\/author\/michaelrowe\/#author"},"datePublished":"2022-02-28T12:00:00-05:00","dateModified":"2022-12-15T06:45:59-05:00"},{"@type":"WebSite","@id":"https:\/\/michaelrowe01.com\/#website","url":"https:\/\/michaelrowe01.com\/","name":"Random Thoughts","description":"A blog about things that interest me.","inLanguage":"en-US","publisher":{"@id":"https:\/\/michaelrowe01.com\/#organization"}}]},"og:locale":"en_US","og:site_name":"Random Thoughts | A blog about things that interest me.","og:type":"article","og:title":"API Authentication Method in ELM \u2013 OIDC | Random Thoughts","og:url":"https:\/\/michaelrowe01.com\/index.php\/day-job\/ibm-elm\/api-authentication-method-in-elm-oidc\/","og:image":"https:\/\/michaelrowe01.com\/wp-content\/uploads\/2019\/04\/img_0391.jpg","og:image:secure_url":"https:\/\/michaelrowe01.com\/wp-content\/uploads\/2019\/04\/img_0391.jpg","og:image:width":3088,"og:image:height":2316,"article:published_time":"2022-02-28T17:00:00+00:00","article:modified_time":"2022-12-15T11:45:59+00:00","twitter:card":"summary","twitter:title":"API Authentication Method in ELM \u2013 OIDC | Random Thoughts","twitter:image":"https:\/\/michaelrowe01.com\/wp-content\/uploads\/2019\/04\/img_0391.jpg"},"aioseo_meta_data":{"post_id":"2507","title":null,"description":null,"keywords":[],"keyphrases":{"focus":{"keyphrase":"","score":0,"analysis":{"keyphraseInTitle":{"score":0,"maxScore":9,"error":1}}},"additional":[]},"primary_term":null,"canonical_url":null,"og_title":null,"og_description":null,"og_object_type":"default","og_image_type":"default","og_image_url":null,"og_image_width":null,"og_image_height":null,"og_image_custom_url":null,"og_image_custom_fields":null,"og_video":"","og_custom_url":null,"og_article_section":null,"og_article_tags":[],"twitter_use_og":false,"twitter_card":"default","twitter_image_type":"default","twitter_image_url":null,"twitter_image_custom_url":null,"twitter_image_custom_fields":null,"twitter_title":null,"twitter_description":null,"schema":{"blockGraphs":[],"customGraphs":[],"default":{"data":{"Article":[],"Course":[],"Dataset":[],"FAQPage":[],"Movie":[],"Person":[],"Product":[],"ProductReview":[],"Car":[],"Recipe":[],"Service":[],"SoftwareApplication":[],"WebPage":[]},"graphName":"","isEnabled":true},"graphs":[],"defaultGraph":"Article","defaultPostTypeGraph":""},"schema_type":"default","schema_type_options":"{\"article\":{\"articleType\":\"BlogPosting\"},\"course\":{\"name\":\"\",\"description\":\"\",\"provider\":\"\"},\"faq\":{\"pages\":[]},\"product\":{\"reviews\":[]},\"recipe\":{\"ingredients\":[],\"instructions\":[],\"keywords\":[]},\"software\":{\"reviews\":[],\"operatingSystems\":[]},\"webPage\":{\"webPageType\":\"WebPage\"}}","pillar_content":false,"robots_default":true,"robots_noindex":false,"robots_noarchive":false,"robots_nosnippet":false,"robots_nofollow":false,"robots_noimageindex":false,"robots_noodp":false,"robots_notranslate":false,"robots_max_snippet":"-1","robots_max_videopreview":"-1","robots_max_imagepreview":"large","priority":null,"frequency":"default","local_seo":null,"breadcrumb_settings":null,"limit_modified_date":false,"ai":null,"created":"2022-02-25 14:02:37","updated":"2025-06-04 00:23:21","seo_analyzer_scan_date":null},"aioseo_breadcrumb":"<div class=\"aioseo-breadcrumbs\"><span class=\"aioseo-breadcrumb\">\n\t\t\t<a href=\"https:\/\/michaelrowe01.com\" title=\"Home\">Home<\/a>\n\t\t<\/span><span class=\"aioseo-breadcrumb-separator\">&raquo;<\/span><span class=\"aioseo-breadcrumb\">\n\t\t\t<a href=\"https:\/\/michaelrowe01.com\/index.php\/category\/day-job\/\" title=\"day-job\">day-job<\/a>\n\t\t<\/span><span class=\"aioseo-breadcrumb-separator\">&raquo;<\/span><span class=\"aioseo-breadcrumb\">\n\t\t\t<a href=\"https:\/\/michaelrowe01.com\/index.php\/category\/day-job\/ibm-elm\/\" title=\"ELM\">ELM<\/a>\n\t\t<\/span><span class=\"aioseo-breadcrumb-separator\">&raquo;<\/span><span class=\"aioseo-breadcrumb\">\n\t\t\tAPI Authentication Method in ELM \u2013 OIDC\n\t\t<\/span><\/div>","aioseo_breadcrumb_json":[{"label":"Home","link":"https:\/\/michaelrowe01.com"},{"label":"day-job","link":"https:\/\/michaelrowe01.com\/index.php\/category\/day-job\/"},{"label":"ELM","link":"https:\/\/michaelrowe01.com\/index.php\/category\/day-job\/ibm-elm\/"},{"label":"API Authentication Method in ELM &#8211; OIDC","link":"https:\/\/michaelrowe01.com\/index.php\/day-job\/ibm-elm\/api-authentication-method-in-elm-oidc\/"}],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_shortlink":"https:\/\/wp.me\/p2aMa8-Er","jetpack-related-posts":[],"jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/michaelrowe01.com\/index.php\/wp-json\/wp\/v2\/posts\/2507","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/michaelrowe01.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/michaelrowe01.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/michaelrowe01.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/michaelrowe01.com\/index.php\/wp-json\/wp\/v2\/comments?post=2507"}],"version-history":[{"count":5,"href":"https:\/\/michaelrowe01.com\/index.php\/wp-json\/wp\/v2\/posts\/2507\/revisions"}],"predecessor-version":[{"id":2544,"href":"https:\/\/michaelrowe01.com\/index.php\/wp-json\/wp\/v2\/posts\/2507\/revisions\/2544"}],"wp:attachment":[{"href":"https:\/\/michaelrowe01.com\/index.php\/wp-json\/wp\/v2\/media?parent=2507"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/michaelrowe01.com\/index.php\/wp-json\/wp\/v2\/categories?post=2507"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/michaelrowe01.com\/index.php\/wp-json\/wp\/v2\/tags?post=2507"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}