Define and Protect Individual Resources According to the UMA Standard
- Multi-service protection gateway – Provides an enforcement point over any number of services or APIs, so that multiple UMA resource servers to which the end user has login accounts can be protected by the authorization server.
- Requester trust elevation for increased security – Ensures that access requesters aren’t just in possession of a “secret link” but goes above and beyond OAuth 2.0 in proving requesters are who they say they are, according to resource owner policy.
- Dynamic policy enforcement point onboarding – Lets your web API register its digital resources with an UMA authorization server as those resources are created and changed.
- User-Managed Access (UMA) standard – “UMA-nizes” your web API, turning it into a conforming and interoperable UMA resource server that takes advantage of the UMA Provider’s value-added features.