Authorization

C2C connectors can support OAuth 2.0 authorization, General Authorization, or both. The authorization type determines how your connector authenticates with the third-party platform and manages access to end user devices.

OAuth 2.0 Authorization: OAuth 2.0 provides user-level authorization through account linking. Each end user authenticates with the third-party platform and grants permission for the connector to access their devices. This ensures that device access is scoped to individual user accounts with explicit user consent.
General Authorization: General Authorization uses credentials such as API keys or tokens stored in AWS Secrets Manager. A single set of credentials can control devices across multiple end users. This approach is useful when the third-party platform doesn't support OAuth 2.0 or when you need to manage devices at scale without individual user authorization flows.

Note

Your connector can implement both authorization types in parallel, providing compatibility with diverse authorization frameworks.

Topics

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Build a C2C (Cloud-to-Cloud) connector

OAuth 2.0 requirements for account linking