API and other integration resources managed by Mulesoft’s Anypoint Platform for APIs can now be automatically included under the umbrella of organizational access control and authentication governed by OpenAm (disclosure: Mulesoft is the parent company to ProgrammableWeb.com). Similar to Microsoft’s Active Directory, OpenAM is a federated single sign-on (SSO) identity solution for enteprises that provides the typical directory service access control functions of authentication, authorization, and of course SSO.
Whereas ActiveDirectory is a commercial solution, OpenAM is takes the open source approach and is commercially supported by ForgeRock. Not only does the support govern role-based developer access to API resources, it also automates the provisioning of OAuth tokens to downstream users of API-consuming applications, obviating the need to integrate a separate OAuth solution and giving administrators a unified view of everyone who has access to digital resource both inside and outside of the company, even if that access is API based.
OpenAM is the second such solution that can be natively integrated into MuleSoft’s Anypoint Platform for APIs. In 2014, Mulesoft baked support for a similar solution from Ping Identity into the same platform.