Apps
The Altair SmartWorks platform uses Oauth 2.0, an industry-standard protocol for authentication and authorization of external sources of information trying to access information in the platform. These external sources, like anything, must supply SmartWorks with an access token before being able to communicate.
- Client Credentials
- APIs are a software intermediary that allows two applications to talk to each other. In SmartWorks, a REST API is used to enable communication between the client (person or software who requests information) and the server (the one that provides the client with the requested information) following HTTP protocol. REST APIs use authorization mechanisms to ensure clients request access to data securely. This involves authenticating the sender of a request and confirming that they have permission to perform the requested action.
- Authorization Code
- Authorization code apps are used to authenticate the users of a web or mobile application that has been built on top of SmartWorks. With this grant type, users can be authenticated without exposing a client secret in the app code. Instead, users can authenticate by entering a username and password in the SmartWorks Identity Management Provider to retrieve an authorization code which can be exchanged for an access token.
Create an App
The basic method of authentication used for this purpose is Oauth. All applications have a Client ID and Client Secret, so you can get a token and interact with the platform.