Difference between revisions of "Client flow description"
Pavel.lobko (talk | contribs) |
Pavel.lobko (talk | contribs) (→Required parameters) |
||
| Line 19: | Line 19: | ||
|- | |- | ||
|[[i2Rest-client command#URL| API endpoint]] || HTTP resource to serve the request | |[[i2Rest-client command#URL| API endpoint]] || HTTP resource to serve the request | ||
| − | |||
| − | |||
|- | |- | ||
|[[i2Rest-client command#AUTHID| User/OAuth2 client/device ID]] ||rowspan="2"| Client Credentials to authenticate with authorization server | |[[i2Rest-client command#AUTHID| User/OAuth2 client/device ID]] ||rowspan="2"| Client Credentials to authenticate with authorization server | ||
Revision as of 11:13, 15 April 2020
An application can request an access token using only its own credentials, the flow is pretty simple.
The flow consists of the following steps:
- (A) The client authenticates with the authorization server and requests an access token from the token endpoint.
- (B) The authorization server authenticates the client, and if valid, issues an access token.
Required parameters
| Parameter | Description |
|---|---|
| Authentication method | *OAUTH2C must be specified
|
| Command | Any of available request type can be choosen |
| API endpoint | HTTP resource to serve the request |
| User/OAuth2 client/device ID | Client Credentials to authenticate with authorization server |
| User/OAuth2 client/dev passwd | |
| OAuth2 token endpoint | HTTP resource used by the client to obtain an access token |
