Introduction
The ultimate job of any SSO solution is to control access to various resources such as web applications and APIs or data associated with a user. Within the CoreOne Suite there are two different type of resources, which are described below. Please do not confuse those SSO resources with regular Access Management Resources. They share a similar naming but define something different.
Identity Resources
An identity resource is more or less a container of information about a user. Those information are stored as claims which must be grouped into scopes.
API Resources
Any larger application will consists of multiple physical or logical APIs. Each of those APIs will represent resource that we want to secure with the authentication server. We therefore can create API resources.