Very helpful video to learn oAuth in mule 4. Thanks for explaining in detail.

Hi Jitendra, thankyou very much for this informative session

great,,, very helpful to understand complete Oauth concept alongwith implementation...

Hi Sir , Can you please add a video for grant_type = Authorization Code as well , not finding anywhere , please explain the concept in video itself , i mean a detailed video on that as how you usually do 😀 thanks in advance 😀😀

Very helpful video sir. Thank you 😊

Very helpful. Thank you for explaining this topic.

If I publish my api to exchange and generate client credentials there, I want it to get stored in the client_os you showed in the video, can you please explain how this can be achieved. Thanks.

is there a video to see how u set up the test-app-cloud?

Can you please update video to cover, implementation for refresh_token scenario as well

Need similar video on grant_type = Authorization Code please

Very much informative video. Is there anyway I can store the token in DB table itself instead of putting in OS because OS is removed when node is down in RTF?

Bro some emergency doubt i have login api success which have validations of Oauth but after api success to reneder page with details from the frontend there are some api’s calling like device info and basic info those are getting token not valid issue though they dont have any validations in the flow any suggestions?

Very well explained. Thanks

Hi Jitendra ,one doubt why claims are not available in Mulesoft provided token is there any way to get it.

If the Mule OAuth provider application is hosted on a few load-balanced servers with mule's hybrid approach, how can I ensure that the token gets successfully validated even if the gateway calls the instance that did not create the token? Is Object store shared across the servers on the environment?

@Jitendara - Thanks for the video. I have used you video as reference for setting Mule as Oauth2 provider. I have added the additional setting of Total ttl=120 and Token ttl timeout unit= Seconds. As per my expectation post 120 seconds the /validation endpoint should throw an error as the access_token issued is expired now. But its validating the token successfully and allowing me to access the resources on which I applied this policy. Can you help me how I can make sure my access_token is expired after 120 seconds

Hi Jitendra Bafna, Thanks for all your mule videos its very helpful . Question on this video from where did you get the client id and secret which you used to create client. Is it random unique id which is now serving as client credentials and stored in object store? And where is the token generated /token api?

will it not work with localhost url while apllying validate

Hi Jitendra, I have created exactly the same flow however my main service is not returning the error message when the token is not valid but i can see invalid token message in oauth provider service. so is there something that i am missing to declare in main service. your help will be appreciated.

@jitendra Bafna. Excellent video sir. One clarification. So the token validation is happening through policy and we are hitting the okta end point. Okta has rate limiting right.will this validation be performed each time a call s made even though we have the token lifetime?

While hitting the /token endpoint , I am getting method not allowed for endpoint error, please help..

I'm new the Mule, In API Manager what did u deployed? could you explain that steps.

Object store life is for 30 days. Does that mean our client ids will get deleted after 30 days?

Hi Jitendra, I have seen your video and practiced. But I am facing no access token was received. How to solve it?

Can you please reply ?? I just followed this video and My token is not expiring , I set ttl 120 sec and I manage to get success result back . Please reply I have a presentation to show this and I am stuck .,

I have a doubt here, sorry i just started learning Mule and running into lot of confusions ,So .. Can someone tell me in the first Url, create client [10:06][ we are passing the client id and client secret , how did we get the values ,?] is that randomly we have given a key , secret and creating client with them or ..?

Thannk you

Hi sir where do we get client id and client secrete?

Hi, Do you have any video? explaining about the password grant type. I have been looking for it.

Hi Jitendra, very good informative video. One question, in real life scenario, is it recommended to have just one OAuth app(createclient, validate flow) deployed and let all CH Mule APIs use one common app for OAuth?

Hi Jitendra, Nicely explained Just want to knw when applied policy in api manager,do we need to give the correct client id and secret we get which we requested in portal.or it can b random client id? When i am using random client id,token is generated successfully but when hitting my service it is giving error "invalid client"

Thank you

Hi, I'm getting this error org.mule.runtime.core.internal.util.store.MuleObjectStoreManager: Running expiry on partition AuthorizationCodes of org.mule.runtime.core.internal.store.PartitionedPersistentObjectStore@59d3ab9c threw java.lang.ArrayIndexOutOfBoundsException: Index 0 out of bounds for length 0:Index 0 out of bounds for length 0 Have anyone faced the same? If yes, how did you resolve?