Authentication of a user by exchanging a code for an encrypted JSON Web Token from an OAuth service. Traffic Ops will POST to the authCodeTokenUrl to exchange the code for an encrypted JSON Web Token. It will then decode and validate the token, validate the key set domain, and send back a session cookie.
| Auth. Required: | No |
|---|
| Roles Required: | None |
|---|
| Response Type: | undefined |
|---|
| authCodeTokenUrl: | URL for code-to-token conversion |
|---|
| code: | Code |
|---|
| clientId: | Client Id |
|---|
| redirectUri: | Redirect URI |
|---|
POST /api/3.0/user/login/oauth HTTP/1.1
Host: trafficops.infra.ciab.test
User-Agent: curl/7.47.0
Accept: */*
Cookie: mojolicious=...
Content-Length: 26
Content-Type: application/json
{
"authCodeTokenUrl": "https://url-to-convert-code-to-token.example.com",
"code": "AbCd123",
"clientId": "oauthClientId",
"redirectUri": "https://traffic-portal.example.com/sso"
}HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Set-Cookie, Cookie
Access-Control-Allow-Methods: POST,GET,OPTIONS,PUT,DELETE
Access-Control-Allow-Origin: *
Content-Type: application/json
Set-Cookie: mojolicious=...; Path=/; Expires=Mon, 18 Nov 2019 17:40:54 GMT; Max-Age=3600; HttpOnly
Whole-Content-Sha512: UdO6T3tMNctnVusDXzRjVwwYOnD7jmnBzPEB9PvOt2bHajTv3SKTPiIZjDzvhU6EX4p+JoG4fA5wlhgxpsejIw==
X-Server-Name: traffic_ops_golang/
Date: Thu, 13 Dec 2018 15:21:33 GMT
Content-Length: 65
{ "alerts": [
{
"text": "Successfully logged in.",
"level": "success"
}
]}