Difference between revisions of "Client flow description"
Pavel.lobko (talk | contribs) |
Pavel.lobko (talk | contribs) |
||
| Line 1: | Line 1: | ||
{{DISPLAYTITLE:Client Flow description}} | {{DISPLAYTITLE:Client Flow description}} | ||
| − | An application can request an access token using only its own credentials, the flow is pretty simple. | + | An application can request an access token using only its own credentials, the flow is pretty simple.<br> |
[[File:Client-flow-scheme.png|400px]] | [[File:Client-flow-scheme.png|400px]] | ||
Revision as of 13:36, 10 April 2020
An application can request an access token using only its own credentials, the flow is pretty simple.
The flow consists of the following steps:
- (A) The client authenticates with the authorization server and requests an access token from the token endpoint.
- (B) The authorization server authenticates the client, and if valid, issues an access token.
Required parameters
| Parameter | Description |
|---|---|
| Authentication method | *OAUTH2C must be specified
|
| Command | Any of available request type can be choosen |
| API endpoint | HTTP resource to serve the request |
| Tokens storage | ??????? |
| User/OAuth2 client/device ID | Client Credentials to authenticate with authorization server |
| User/OAuth2 client/dev passwd | |
| OAuth2 token endpoint | HTTP resource used by the client to abtain an access token |
