Hi Everyone,
Is it possible to do external OAuth (SSO) to fetch the customer specific access token?
I would like to do external-auth instead of password flow suggested in the documentation (/customers/token?grant_type=password&username=&password=)
I am not sure this documentation refers to project specific or commercetools customer specific integration.
Best answer by Philipp Hofmann
Hey
it depends a lot on your use case. I have seen quite some project implementations, where commercetools is not being used at all to validate the user. The request is going against an external SSO provider and the Backend for Frontend is then using the data to “just” load the customer from commercetools.
The BFF is then functioning with more or less and admin account to fetch the corresponding data from commercetools.
Does that make sense to you?
+2Hello Siva! The documentation is indeed referring to project-specific OAuth integration, so your use case is supported. For your customers, be sure to note this section regarding the /me endpoints
Thanks for your response
I do have additional questions based on your response,
/anonymous/token?grant_type=client_credentials
Any thoughts? Thank you.
+1Hey
it depends a lot on your use case. I have seen quite some project implementations, where commercetools is not being used at all to validate the user. The request is going against an external SSO provider and the Backend for Frontend is then using the data to “just” load the customer from commercetools.
The BFF is then functioning with more or less and admin account to fetch the corresponding data from commercetools.
Does that make sense to you?
Yes that is correct, we do have a similar use case (validate-user doesn’t happen through commercetools)
Already have an account? Login
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.
