4 End-user authentication
This section provides information on setting up end-user based authentication for the MyID Core API. This allows you to call the MyID Core API using the credentials of a person in the MyID system, using the MyID authentication service to authenticate their credentials, whether security phrases, smart card, FIDO authenticator, or any other authentication method for which MyID is configured.
To set up end-user based authentication, you must carry out the following:
-
Configure the web.oauth2 web service with the ID of your client system.
See section 4.1, Configuring web.oauth2 for end-user based authentication.
-
Authenticate your user account and obtain an access token for your system to use.
See section 4.2, Obtaining an end-user based access token using PKCE or section 4.3, Obtaining an end-user based access token using a client secret.
For more information on end-user authentication, see the Authorization Code section of the OAuth 2.0 Authorization Framework: