Overview
The purpose of this service is to exchange Waylay (JWT) tokens for 3rd-party Access Tokens to facilitate communication with external vendors. This has a number of advantages:
Rationale
Easier maintenance of 3rd-party API communication
Since all of the logic involving the authentication flow is contained in a single service.
For OAuth2, it handles request tokens, exchanging those tokens for refresh and access tokens and lastly automatically refreshing expired access tokens. This flow is often replicated everywhere and is a wasted effort.
Centralised access and overview of API usage
For managing rate limits (and imposing our own) and checking general usage of third-party APIs so we can track which provider is very popular.
Client
Waylay has a client available to make API calls to Hoard. We highly suggest you use it.
https://github.com/waylayio/hoard-client/blob/master/index.js
Configuration
By default we do not show any providers when you try to list them.
To change this you must set the hoard:providers
key of the tenant to *
or manually list them (comma separated) in the Accounts UI.