The quickest way would be to use Gluu Gateway. The Gluu Server issues tokens (either UMA or OAuth) that use the scope or other JSON claims to specify permissions granted. It's the responsibility of the Gateway to enforce access (based on the information in the token). Also, UMA is used when you need to interact with the user, post authentication. If you have a binary decision to allow access, you can just use OAuth and OPA in the gateway. see the gluu blog on Axiomatics for a partial overview. Also, see the Gluu Gateway docs on OpenID. After that, we can schedule a call to review. Thu-Fri is a holiday in the US.

Answer confirmed Sorry for bothering you on your holiday. But I have no idea to use Gluu Gateway yet. Can you tell me how to use Gluu's UMA?

Hi hyunwoo kim, Please take a look at Gluu-Gateway docs here https://gluu.org/docs/gg/. It will guide you how to use Gluu Gateway and configure UMA security. Best Regards, Meghna Joshi

Let's check the documentation. Thank you for your answer. We will open a new ticket for any further questions.

Hi.. I have tried several things to configure Gluu's UMA for a few days. But the exact guide doesn't exist, and YouTube's videos are too old. Please give me a detailed guide. I am an employee of a company that has partnered with Gluu. I have no contact points with Gluu staff, so I leave support. Please help.