Hello,
guys I would like to investigate such case:
- BC Api exposed with s2s auth i.e. creating webshop integration
- is it possible using azure and BC to distniguish customers i.e. register the api with s2s muultiple times but in oauth claims put customer no and use it in bc?
- or the only possiblity in such case would be send some secret unique for customer in contract itself with custom layer of authentication build as an extension
Of courese user impersonation auth is also an option but have 2 drawbacks: ncessity to use refresh token to keep integration running without need to generate new token as old has expired; licensing - each customer 'eats' a license.
I appreciate your thoughts.
Regards
0