All docs This doc

Versions Compared


  • This line was added.
  • This line was removed.
  • Formatting was changed.


You can build the project (mvn clean install) for this handler by accessing its source here:


When building the sample using the source ensure you update pom.xml with the online repository. To do this, add the following section before <dependencies> tag in pom.xml:

Code Block
	   <name>WSO2 internal Repository</name>
	   <name>WSO2 Maven2 Repository</name>

Alternatively, you can download the JAR file from the following location, copy it to the repository/component/lib directory, and restart the ESB:


You can now send a request to the secured API. For example, you can send it using cURL as the REST client:


  1. In the ESB Management Console, go to Manage -> Service Bus and click Source View.
  2. Insert the following XML configuration into the source view before the closing </definitions> tag to create the TestGoogle API:

    Code Block
     <api xmlns=""
       <resource methods="GET">
             <log level="full">
               <property name="STATUS" value="***** REQUEST HITS IN SEQUENCE *****"/>
                   <http method="get" uri-template=""/>
           <handler class="org.wso2.handler.SimpleOAuthHandlerSimpleOauthHandler"/>

    Notice that the <handlers> tag contains the reference to the custom handler class.

  3. Copy the custom handler.jar to the <ESB_HOME>/repository/components/libs directory.
  4. Open <ESB_HOME>/repository/conf/axis2/axis2.xml and add the following parameters:

    Code Block
    <!-- OAuth2 Token Validation Service -->
    <parameter name="oauth2TokenValidationService">https://localhost:9444/services/OAuth2TokenValidationService</parameter>
    <!-- Server credentials -->
    <parameter name="identityServerUserName">admin</parameter>
    <parameter name="identityServerPw">admin</parameter>
  5. Restart the ESB.


  1. Start WSO2 Identity Server and log into the management console.
  2. Click Add under Service Providers in the Main tab. Add a service provider. See Adding a Service Provider for detailed instructionsOn the Main tab, click Add under Service Providers, and then add a service provider.
  3. Note the access token URL and embed it in a cURL request to get the token. For example, use the following command and replace <client-id> and <client secret> with the actual values:

    curl -v -k -X POST --user <client-id>:<client secret> -H "Content-Type: application/x-www-form-urlencoded;charset=UTF-8" -d 'grant_type=password&username=admin&password=admin' https://localhost:9444/oauth2/token


Code Block
 curl -v -k -H "Authorization: Basic YWRtaW46YWRtaW4=" https://localhost:8243/stockquote/view/IBM