![]() ![]() Alternately the authorization server can use HTTP Basic Auth. One way to authenticate the client is to accept another parameter in this request, client_secret. If the client was issued a client secret, then the server must authenticate the client. If the client is authenticating via HTTP Basic Auth or some other method, then this parameter is not required. client_id (required if no other client authentication is present) This is the plaintext string that was used to calculate the hash that was previously sent in the code_challenge parameter. If the client included a code_challenge parameter in the initial authorization request, it must now prove it has the secret used to generate the hash by sending it in the POST request. code_verifier (required for PKCE support) The service must reject the request otherwise. ![]() The redirect URI in the token request must be an exact match of the redirect URI that was used when generating the authorization code. If the redirect URI was included in the initial authorization request, the service must require it in the token request as well. This parameter is the authorization code that the client previously received from the authorization server. The grant_type parameter must be set to “authorization_code”. The access token request will contain the following parameters. This request will be made to the token endpoint. After the user returns to the application via the redirect URL, the application will get the authorization code from the URL and use it to request an access token. The authorization code grant is used when an application exchanges an authorization code for an access token. Short-lived tokens with Long-lived authorizations.User Experience and Alternative Token Issuance Options. ![]() ![]() OAuth for Browserless and Input-Constrained Devices.Checklist for Server Support for Native Apps.Deleting Applications and Revoking Secrets.Security Considerations for Single-Page Apps.User Experience and Security Considerations. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |