forked from filsh/yii2-oauth2-server
-
Notifications
You must be signed in to change notification settings - Fork 0
Authorization Code
Joseba Juániz edited this page Sep 11, 2015
·
8 revisions
It's a grant type used when the client wants to request access to protected resources on behalf of another user (i.e. a 3rd party). This is the grant type most often associated with OAuth.
This grant type is used to obtain both access tokens and refresh tokens and is optimized for confidential clients. Since this is a redirection-based flow, the client must be capable of interacting with the resource owner's user agent and also capable of receiving incoming requests from the authorization server.
## Use Cases
- Calls on behalf of a third party.
-
[Configuration Options] (https://github.com/Patroklo/yii2-oauth2-server/wiki/Configuration-Options)
6.1. Authorization Code
6.3. Password
6.4. Client Credentials