I am relatively new to REST and OAuth. I understand* the basic concept but I have trouble understanding how it is used in OC WS.
The main issue is that as far I understand OAuth allows me (the client) produce a token so that server A can access to my resources in server B using that token; that way I do not need to disclose my authentication info to server A.
But in OC I have just one server (with two webapps, 'OpenClinica' and 'OpenClinica-ws') and a client, so I am at odds about what to do.
This page (https://docs.openclinica.com/3.1/technical-documents/rest-api-specifications/oauth-and-openclinica
) gives some info, but it seems centered about accessing OC data from the Rule Designer server.
All of this leaves me with the following questions
1) Should I still use OAuth in the scenario I am talking about (one server, one client)? I assume that in that case the OC server (the web application) will serve both as both OC and D in the diagram shown in the linked page.
2) How do I get the access token? What should be the client id?
If you have some example of how to test these WS on SoapUI it would be of great help, too. Or client code in almost any programming language.
Thanks in advance.
* Or at least I believe that I understand it :-D