OAuth Wrap Client Account and Password Profile in ACS - nordvall/TokenClient GitHub Wiki
This flow is supported in ACS, but since OAuth Wrap has been superseded by OAuth 2.0, you should try to move to the OAuth 2.0 Client Credentials Grant instead.
Request:
POST /WRAPv0.9 HTTP/1.1
Content-Type: application/x-www-form-urlencoded
Host: xxx.accesscontrol.windows.net
Content-Length: 134
wrap_name=abc&wrap_password=123&wrap_scope=https%3A%2F%2Fxxx.accesscontrol.windows.net%2Fv2%2Fmgmt%2Fservice
Parameters
name | value | example |
---|---|---|
wrap_name | the name of a registered Service Identity or Management Identity in ACS | ManagementClient |
wrap_password | one of the passwords for the identity | abc123 |
wrap_scope | the resource server you want an access token to | https://xxx.accesscontrol.windows.net/v2/mgmt/service |
Response:
HTTP/1.1 200 OK
Content-Type: application/x-www-form-urlencoded;
wrap_access_token=*token*&wrap_access_token_expires_in=28800