Skip to content
This repository has been archived by the owner on Sep 21, 2022. It is now read-only.

Limit allowed OAuth Grant Types by realm/client #68

Open
hjacobs opened this issue Mar 16, 2016 · 2 comments
Open

Limit allowed OAuth Grant Types by realm/client #68

hjacobs opened this issue Mar 16, 2016 · 2 comments
Labels
enhancement help wanted

Comments

@hjacobs
Copy link
Contributor

hjacobs commented Mar 16, 2016

We might want to disable certain grant types for some realms/clients, e.g. disabling the "Resource Owner Password Credentials Grant" for human users.

See http://tools.ietf.org/html/rfc6749#section-4.3

Resource Owner Password Credentials Grant:
The authorization server should take special care when
enabling this grant type and only allow it when other flows are not
viable.
@hjacobs
Copy link
Contributor Author

hjacobs commented Mar 16, 2016

To be discussed.

@lasomethingsomething
Copy link

Hi @hjacobs, was it discussed? Wondering if we can close this issue, it dates back to March 2016.

Or, we could add a "Help Wanted" label.

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
enhancement help wanted
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@hjacobs @lasomethingsomething @vroldanbet