Service registration
If you have a service (client) that you want to interact with the OpenAIRE APIs you need to register it.
Which one is for me?
| How | Client Credential Issuer | Authentication Method | |
|---|---|---|---|
| Basic | Client ID & Client Secret | OpenAIRE AAI server | Client Secret (Basic) |
| Advanced | Private Key signed JWT | Service owner | Private Key JWT Client Authentication |
For the Basic Authentication method the OpenAIRE AAI server generates a pair of Client ID and Client Secret credentials for your service upon its registration. The service sends the client id and client secret when authenticating to the OpenAIRE AAI Server to obtain the access token for the OpenAIRE APIs. The OpenAIRE AAI server checks whether the client id and client secret sent is valid. Continue reading for the Basic Authentication
For the Advanced Authentication method your service does not send a client secret but it uses a self signed
client assertion to authenticate to the OpenAIRE AAI server in order to obtain the access token for the OpenAIRE APIs.
The client assertion is a JWT that must be signed with RSASSA using SHA-256 hash algorithm. The OpenAIRE AAI server validates
the client assertion using the public key that you have provided upon the service registration.
Continue reading for the Advanced Authentication
