Cisco Systems, Inc.
System and method for authenticating clients

Abstract:

A system is disclosed for authenticating a client's request for resources in a network environment. The system is configured to receive a request, the request comprising credentials and an API scope, authenticate the credentials, and confirm the API scope of the request is identified in one or more API scopes allocated to a client using an authorization server. The authorization server may comprise a relational database correlating one or more clients with one or more roles, the roles may be correlated with one or more permissions, and the permissions may be correlated with one or more API scopes. The system may be configured to request an access token, the access token comprising an API scope that correlates to the API scope of the request, and grant access to the requested resource if the API scope of the access token correlates to the API scope of the request.