Page created: 30 Sep 2020
|
Page updated: 30 Sep 2020
The client credentials type works in a similar way to the ROPC grant type and is used to provide an access token to a client based on the credentials or the client, not the resource owner. In this grant type, the client credentials are swapped for an access token (step 1 below).
Capability | |
---|---|
Browser-based end user interaction | No |
Can use external IDP for authentication | No |
Requires client authentication | Yes |
Requires client to have knowledge of user credentials | No |
Refresh token allowed | No |
Access token is in context of end user | No |