How to generate AWX Oauth2 token via API for social authenticated user

ahmed · August 2, 2023, 2:09pm

Hi everyone,

How can I generate a Oauth2 token via API for users authenticated with SAML or OIDC

Thanks.

AWX_Project · August 7, 2023, 1:59pm

Hi Ahmed,

For security reasons, we default to not allowing external users to create OAuth2 tokens. However, that can be enabled. Quote from the docs below:

The Allow External Users to Create Oauth2 Tokens (ALLOW_OAUTH2_FOR_EXTERNAL_USERS in the API) setting is disabled by default. External users refer to users authenticated externally with a service like LDAP, or any of the other SSO services. This setting ensures external users cannot create their own tokens. If you enable then disable it, any tokens created by external users in the meantime will still exist, and are not automatically revoked.

Hopefully this helps,
AWX Team

AWX_Project · August 7, 2023, 2:01pm

This was the doc like for that:

https://docs.ansible.com/automation-controller/latest/html/administration/oauth2_token_auth.html

Also, it is possible to create an oauth2 token from the command-line, here are the docs for that:

https://docs.ansible.com/automation-controller/latest/html/administration/tower-manage.html#create-oauth2-token

Thanks,
AWX Team

Topic		Replies	Views
Authenticate User with Keycloak Access Token to use the Rest API Get Help awx	4	667	November 13, 2023
awx CLI and external authentication AWX Project awx	1	2	October 3, 2022
OAuth2 & Authentication Changes AWX Project awx	0	0	February 26, 2018
Using application auth tokens python sample? AWX Project awx	3	4	January 15, 2021
OAuth setup for integrations AWX Project	2	4	June 2, 2022

How to generate AWX Oauth2 token via API for social authenticated user

Related topics