CredentialMapping
This section explains the types of Credential Mapping policies.
TIBCO API Exchange Gateway can map the credentials of the subject from the authenticated principal in the form of SAML assertion, or can map the user name and password in the security header or the HTTP Authorization header by virtue of Credential mapping policies.
TIBCO API Exchange Gateway supports following policies for credential mapping:
See the following policies:
- CredentialMappingByUsernameToken Policy
- CredentialMappingBySAML Policy
- Credential Mapping by OAuth Policy
Credential Mapping By OAuth
TIBCO API Exchange Gateway supports the credential mapping by OAuth policy. The policy generates the access token using the credentials configured in the policy. The credential mapping uses the OAuth password credential or client credential authorization flow to obtain the access token required to access the protected target operation, therefore, the previous authentication or authorization is not needed.