Security APIs

APIs enable software systems to communicate by providing rules and protocols for data exchange without requiring knowledge of internal workings. They facilitate integration, speed up development through reusable services, enhance scalability, and support automation across platforms.

An API (application programming interface) is a set of rules and protocols that helps software applications to communicate with each other. It acts as a bridge between systems, where one application can request data or services from another, and understanding of their internal working is not required.

Basic functions of APIs:

Enabling integration between systems.
Accelerating development by reusing existing services.
Improving scalability and modularity.
Supporting automation and interoperability across platforms.

Within Infor OS, APIs are used to do these actions:

Create and manage users, roles, and service accounts.
Automate provisioning and configuration tasks.
Interact with external entities and connectors.
Support SCIM (System for Cross-domain Identity Management), registry services, and session management.

Types of APIs

APIs are categorized by their architecture and purpose:

REST APIs (Representational State Transfer) are often used in Infor OS and IFS services because they use HTTP methods such as GET, PUT, DELETE. Furthermore, they are stateless and scalable.
SOAP APIs (Simple Object Access Protocol).
Integration APIs.
Transactional APIs.
Async APIs.

Security and authentication

APIs often require secure access through:

Bearer tokens.
OAuth2 scopes.
Service accounts.
Client credentials grant types.