[ https://issues.jboss.org/browse/TEIID-3251?page=com.atlassian.jira.plugin... ] Ramesh Reddy commented on TEIID-3251: ------------------------------------- OAuth specification can be found in [http://oauth.org], CXF does have the OAuth support. The workflow between OAuth 1.0a and OAuth 2 seems to be different, and may require different implementations. I am considering writing a OAuthLoginModule that can be used as security-domain for a data source. In this case, LoginModule will inject a special private credential that will help create the authorization code in all the web service requests. Typically OAuth flow requires a user participation in logging on to the website and accepting/granting authorization to the third party vendor like Teiid. The approval process can be different for different web sites, so automating this seems to highly customized. I suggest, we provide a standalone utility to help guide the user with the flow of OAuth granting process, where this utility can collect necessary information from user and direct them through authentication process. Based on the information this will provide the LoginModule XML for standalone.xml file. For users, who want to automate or use this in "delegate" fashion, LoginModule can be extended to provide the same information that is gathered in manual step. -- This message was sent by Atlassian JIRA (v6.3.11#6341)