Externalizing and Customizing Login Page of OAuth Flow — WSO2 API Manager 2.6.0

Standard login page prompted to the user on the first leg of the OAuth 2.0 Authorization code journey in WSO2 API Manager is shown below.

This page is made up of several JSP pages based on a JEE web application deployed in web container internal to the WSO2 API Manager. JEE compliant web container is based on Apache Tomcat 7.x series. This particular web page is served by the “authenticationendpoint” web application as shown below from the <APIM_Home>/repository/deployment/server/webapps directory.

This web application encapsulate login journey and can be deployed externally on different web container outside of WSO2 API Manager with your own branding. Following diagram shows a possible deployment design.

When you are using a separate web server to host authentication endpoint web application be sure to give the full URL of the authentication endpoint in the <APIM_HOME>/repository/conf/identity/application-authentication.xml file. The default configuration has a relative path, which works in a standalone API Manager setup.