Skip to main content

Authentication

The Authorization Code grant of OAuth2 provides the means to authenticate all requests to the Weeztix system. This grant gives users of Weeztix the ability to give applications access to their resources and ensures no user credentials are shared during this process. At a high level, this process has the following steps:

  1. The application that needs access to the Weeztix resources redirects the user to the Weeztix OAuth2 server.
  2. The user is presented with an authorization prompt from the Weeztix OAuth2 server, and approves the request of the application to access their resources.
  3. The user is redirected back to the application and provided with an authorization code.
  4. The application uses the authorization code to request an access token.
  5. The access token is used to make requests to the Weeztix, also see issuing requests.

In this part of the documentation, these steps are elaborated upon.

note

The system that accesses the Weeztix system must be able to store issued access tokens safely.