The Oasis API is a JSON REST API that allows a 3rd party client to interact with your Oasis data. Access to the API is provided using the OAuth 2.0 authorization framework. OAuth is an open standard for authorization. API Management is the administrative page that manages 3rd party client credentials and is available to Authorized Service Administrators (ASAs) through the Account Settings page. Access to the Oasis API is composed of two parts: authorization servers and resource servers.
The authorization server validates login credentials and issues access tokens to be used with the resource servers. There are five different flows available to obtain access tokens and these are defined by grant types. The five grant types are the following:
The resource server hosts the protected resources and is the interface to your Oasis data. The 3rd party client must use an access token to access the protected resources. The Oasis API includes the following resources: