You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The client credentials grant is almost identical to the resource owner password credentials grant, except it's been specifically designed for **client-to-server scenarios**
63
81
(no user is involved in this flow): the client application sends a token request containing its credentials and gets back an access token it can use to query its own resources.
| Agent -|----(B)-- User authenticates -->| Server |
258
+
| | | |
259
+
| |<---(C)--- Redirection URI ----<| |
260
+
| | with Access Token +---------------+
261
+
| | in Fragment
262
+
| | +---------------+
263
+
| |----(D)--- Redirection URI ---->| Web-Hosted |
264
+
| | without Fragment | Client |
265
+
| | | Resource |
266
+
| (F) |<---(E)------- Script ---------<| |
267
+
| | +---------------+
268
+
+-|--------+
269
+
| |
270
+
(A) (G) Access Token
271
+
| |
272
+
^ v
273
+
+---------+
274
+
| |
275
+
| Client |
276
+
| |
277
+
+---------+
278
+
```
194
279
195
280
```http
196
281
GET /connect/authorize?response_type=token&client_id=s6BhdRkqt3&redirect_uri=https%3A%2F%2Fclient.example.org%2Fcb&scope=openid&state=af0ifjsldkj&nonce=n-0S6_WzA2Mj HTTP/1.1
0 commit comments