keycloak-scim/authorization_services/topics/service-overview.adoc

[[_service_overview]]
= Authorization services

{project_name} Authorization Services are built on top of well-known standards such as the OAuth2 and User-Managed Access specifications.

OAuth2 clients (such as front end applications) can obtain access tokens from the server using the token endpoint and use
these same tokens to access resources protected by a resource server (such as back end services). In the same way,
{project_name} Authorization Services provide extensions to OAuth2 to allow access tokens to be issued based on the processing
of all policies associated with the resource(s) or scope(s) being requested. This means that resource servers can enforce access
to their protected resources based on the permissions granted by the server and held by an access token. In {project_name} Authorization Services
the access token with permissions is called a Requesting Party Token or RPT for short.

In addition to the issuance of RPTs, {project_name} Authorization Services also provides a set of RESTful endpoints that allow resources servers to manage their protected
resources, scopes, permissions and policies, helping developers to extend or integrate these capabilities into their applications in order to support fine-grained authorization.
[RHSSO-599] - Replacing link with fake 2016-11-29 15:30:53 +00:00			`[[_service_overview]]`
KEYCLOAK-16923-FIX Revising Authorization Services Guide for Red Hat Standards (#1358) 2022-04-18 14:10:57 +00:00			`= Authorization services`
First bucket of documentation from docbook. 2016-05-31 20:36:14 +00:00
[KEYCLOAK-3169] - UMA 2.0 related changes (#325) * [KEYCLOAK-3169] - Updating authz services doc * [KEYCLOAK-3169] - Section about changes to user account service * [KEYCLOAK-3169] - Removing UMA 1.0 references * [KEYCLOAK-3169] - RH-SSO images * [KEYCLOAK-3169] - Updating Keycloak images * [KEYCLOAK-3169] - Review * [KEYCLOAK-3169] - Review 2018-02-28 07:53:43 +00:00			`{project_name} Authorization Services are built on top of well-known standards such as the OAuth2 and User-Managed Access specifications.`
More screenshots. Reviewing getting started tutorials. 2016-06-14 23:50:50 +00:00
[KEYCLOAK-3169] - UMA 2.0 related changes (#325) * [KEYCLOAK-3169] - Updating authz services doc * [KEYCLOAK-3169] - Section about changes to user account service * [KEYCLOAK-3169] - Removing UMA 1.0 references * [KEYCLOAK-3169] - RH-SSO images * [KEYCLOAK-3169] - Updating Keycloak images * [KEYCLOAK-3169] - Review * [KEYCLOAK-3169] - Review 2018-02-28 07:53:43 +00:00			`OAuth2 clients (such as front end applications) can obtain access tokens from the server using the token endpoint and use`
			`these same tokens to access resources protected by a resource server (such as back end services). In the same way,`
			`{project_name} Authorization Services provide extensions to OAuth2 to allow access tokens to be issued based on the processing`
			`of all policies associated with the resource(s) or scope(s) being requested. This means that resource servers can enforce access`
			`to their protected resources based on the permissions granted by the server and held by an access token. In {project_name} Authorization Services`
			`the access token with permissions is called a Requesting Party Token or RPT for short.`

			`In addition to the issuance of RPTs, {project_name} Authorization Services also provides a set of RESTful endpoints that allow resources servers to manage their protected`
			`resources, scopes, permissions and policies, helping developers to extend or integrate these capabilities into their applications in order to support fine-grained authorization.`