By Mamoon Yunus | Date posted: February 10, 2014
Identity management is the cornerstone for building a secure infrastructure that uses internal and 3rd party APIs. By defining users, groups, and access control lists (ACLs), companies can granularly control who gets to use what API-based resource. In this tutorial, we will configure users, groups and ACLs on Forum Sentry API Gateway for authenticating users and authorizing API access. Once configured, any token type such as OAuth, SAML, or cookies can be used to present user credentials to Forum Sentry for validation against on-board users.