OAuth 2.0 for Authentication

For secure access to the APIs Application Programming Interface. Refers to a set of functions, procedures, protocols, and tools that enable users to build application software., the HPE Aruba Networking Central API Framework plug-in supports the OAuth Open Standard for Authorization. OAuth is a token-based authorization standard that allows websites or third-party applications to access user information, without exposing the user credentials. protocol for authentication and authorization. OAuth 2.0 is a simple and secure authorization framework. It allows applications to acquire an access token for HPE Aruba Networking Central through a variety of work flows supported within the OAuth 2.0 specification.

All OAuth 2.0 requests must use the SSL Secure Sockets Layer. SSL is a computer networking protocol for securing connections between network application clients and servers over the Internet. endpoint available at the Domain URL Uniform Resource Locator. URL is a global address used for locating web resources on the Internet. (for example, https://app1-apigw.central.arubanetworks.com).

Access Tokens

The access token is a string that identifies a user, app, or web page and is used by the app to access an API. The access tokens provide temporary and secure access to the APIs.

The access tokens have a limited lifetime. If the application uses web server or user-agent OAuth authentication flows, a refresh token is provided during authorization that can be used to get a new access token.

If you are writing long running applications (web app) or native mobile applications, you must refresh the token periodically. For more information, see Refreshing a token.

This section includes the following topics: