Client credential flow description

From i2Rest
Jump to: navigation, search

An application can request an access token using only its own credentials, the flow is pretty simple.
Client-flow-scheme.png


The flow consists of the following steps:

(A) The client authenticates with the authorization server and requests an access token from the token endpoint.
(B) The authorization server authenticates the client, and if valid, issues an access token.

Client Credential flow by i2Rest command

The next parameters are mandotary to perform request with Client Credential flow by I2Rest command.

Parameter Description
Authentication method *OAUTH2C must be specified
Command Any of available request type can be choosen
API endpoint HTTP resource to serve the request
User/OAuth2 client/device ID Credentials to authenticate I2Rest Client with authorization server
User/OAuth2 client/dev passwd
OAuth2 authorization endpoint HTTP resource to be requested for an access token
Scope The set of resources and operations that are allowed to application with access token
Retrieved from "https://www.i2rest.com/index.php?title=Client_flow_description&oldid=1632"