OpenID Connect是否支持“资源所有者密码证书"授予? [英] Does OpenID Connect support the Resource Owner Password Credentials grant?
问题描述
我以前一直在使用OAuth资源所有者凭证流程进行授权.
但是,我现在想考虑以这种方式使用openid connect进行身份验证和授权,并且想知道openid connect是否支持资源所有者凭证流.
是的,OpenID Connect支持所有OAuth 2.0授予类型,包括资源所有者密码凭证授予和客户端凭证授予.
我们知道,授权代码授予和隐式授予是典型的三足流,包括客户端,授权服务器和用户之间的交互.资源所有者密码凭据授予和客户端凭据授予是两足的,这意味着客户端使用了预先授权的范围,因此无需与用户进行交互,从而无需执行典型流程中的其中一条. >
这里是参考: 解决方案
Yes, OpenID Connect supports all OAuth 2.0 grant types including Resource Owner Password Credentials Grant and Client Credentials Grant.
As we know, Authorization Code Grant and Implicit Grant are typical 3-legged flows including interaction between a client, an authorization server and a user. While the Resource Owner Password Credential Grant and Client Credential Grant are 2-legged which means the client uses pre-authorized scopes so that no interaction with the user is necessary, removing the need to perform one of the legs in the typical flow.
Here is a reference: Configuring an OpenID Connect Provider to enable 2-legged OAuth requests
这篇关于OpenID Connect是否支持“资源所有者密码证书"授予?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
