Standard : 2.2 : "two main paths" means other flow can be used , or not ?

hideki nara avatarhideki nara created an issue

Dec 22, 2011 version of Draft 07 says about Grant flows like this:

" ......

2.2. Protocol Flows

Authorization Requests follow two main paths to obtain Access Tokens and ID Tokens, the Implicit Flow and the Authorization Code Flow. .... "

Other flows like Client Credentials flow with "JSON Web Token (JWT) Bearer Token Profiles for OAuth 2.0" can be allowed or not ?

Comments (6)

  1. John Bradley

    Yes the idea is that other flows like "JSON Web Token (JWT) Bearer Token Profiles for OAuth 2.0" can be used.

    A extension document probably needs to be written for each additional flow.

  2. Michael Jones

    John will probably close this as "wontfix" pending further clarifying discussions with Hideki. We don't anticipate any spec changes resulting from this issue.

  3. Log in to comment
Tip: Filter by directory path e.g. /media app.js to search for public/media/app.js.
Tip: Use camelCasing e.g. ProjME to search for ProjectModifiedEvent.java.
Tip: Filter by extension type e.g. /repo .js to search for all .js files in the /repo directory.
Tip: Separate your search with spaces e.g. /ssh pom.xml to search for src/ssh/pom.xml.
Tip: Use ↑ and ↓ arrow keys to navigate and return to view the file.
Tip: You can also navigate files with Ctrl+j (next) and Ctrl+k (previous) and view the file with Ctrl+o.
Tip: You can also navigate files with Alt+j (next) and Alt+k (previous) and view the file with Alt+o.