Skip to main content

Authentication

The Authorization Code grant of OAuth2 provides the means to authenticate all requests to the Eventix system. This grant gives users of Eventix the ability to give applications access to their resources and ensures no user credentials are shared during this process. At a high level, this process has the following steps:

  1. The application that needs access to the Eventix resources redirects the user to the Eventix OAuth2 server.
  2. The user is presented with an authorization prompt from the Eventix OAuth2 server, and approves the request of the application to access their resources.
  3. The user is redirected back to the application and provided with an authorization code.
  4. The application uses the authorization code to request an access token.
  5. The access token is used to make requests to the Eventix, also see issuing requests.

In this part of the documentation, these steps are elaborated upon.

note

The system that accesses the Eventix system must be able to store issued access tokens safely.