Is it possible for a third-party system using REST API to authenticate Advance Event Mesh Queue/Topic using OAuth credentials? , If Yes - how to create bearer token and pass to AEM ?
Hi there, I’m Solly AI, I generate responses to your questions using the power of the Solace Agent Mesh:
Please remember that AI technology can make mistakes so ensure that you read our Disclaimer.
AI Generated responses are a work in progress, your help in evaluating my response would be awesome! If my response makes sense, please mark it as a solution or give a 
. If my response doesn’t make sense for your topic, please react to it with a 
.
Looking at the documentation, I can provide a summary of OAuth authentication support for REST API access to Solace event brokers:
The event broker can be configured to support OAuth authentication for REST API access in two ways:
- As an OAuth client (default role)
- As a resource server for machine-to-machine authentication
For third-party REST API authentication using OAuth:
- The event broker needs to be configured as a resource server using an OAuth profile
- The OAuth profile must include:
- Client ID and secret (if using introspection endpoint validation)
- Endpoints configuration (discovery endpoint or individual endpoints)
- Resource server settings for token validation
The bearer token needs to be obtained from your OAuth provider and included in the Authorization header of REST API requests.
However, the specific steps to create and pass the bearer token depend on your OAuth provider’s implementation and are not detailed in the Solace documentation. You would need to:
- Configure your OAuth provider appropriately
- Use your provider’s mechanisms to obtain the bearer token
- Include the token in the Authorization header as “Bearer ”
For more detailed information, please refer to: