Configuring OAuth external authentication - 7.3

Talend Data Catalog Administration Guide

author
Talend Documentation Team
EnrichVersion
7.3
EnrichProdName
Talend Big Data Platform
Talend Data Fabric
Talend Data Management Platform
Talend Data Services Platform
Talend MDM Platform
Talend Real-Time Big Data Platform
task
Administration and Monitoring
Data Governance
EnrichPlatform
Talend Data Catalog

The OAuth (Open Authorization) specification defines a delegation protocol that is useful for conveying authorization decisions across a network of web-enabled applications and APIs. OAuth is used in a wide variety of applications, including providing mechanisms for user authentication.

As an administrator, you can always login using the administrator rescue login URL: http://<host>:<port>/MM/Auth?nativeLogin, where <port> is the HTTP port that Talend Data Catalog responds to.

Here is an example of the OAuth authentication workflow:
  1. You try to login to Talend Data Catalog using a browser.
  2. Talend Data Catalog redirects the client to the authorization server for authentication.
  3. You log in to the authorization server and approve the access request. The authorization server sends an authorization code.
  4. The client exchanges the authorization code for an access token.
  5. If the code is valid, the client gets an access token to request a protected resource.
  6. Talend Data Catalog receives a request for a protected resource with an access token and verifies the validity of the token directly with the authorization server.
  7. If the token is valid, the authorization server sends your data to Talend Data Catalog.
  8. Talend Data Catalog logs you in to the system and grants you the protected resources.