Clients configuration | Grant types
Client attributes help to manage the authorization capabilities for OAuth 2.0 and satellites flows. They provide a high level of customization helping the server to be integrated within infrastructures seamlessly. Those configuration help the flows to be both business and technically adapted for the addressed use case.
OAuth clients can be customized through either the Administration API or the user interface providing 4 categories of settings:
- General configuration
- Authentication
- Security
- Grant types
Grant types parameters
The Authorization Server allow to enable and disable the implemented flows for a specific client via the currently described switches. Those are to provide better security restricting the means of access obtention.
client_credentials switches the ability to perform the Client Credentials flow interacting with the configured client.
password switches the ability to perform the Resource Owner Password Credentials flow interacting with the configured client.
authorization_code switches the ability to perform the Authorization Code Grant flow interacting with the configured client.
refresh_token switches the ability to perform the Refresh Token flow interacting with the configured client.
implicit switches the ability to perform the Implicit Grant flow interacting with the configured client.
preauthorized_code switches the ability to perform the OpenID 4 Verifiable Credentials Issuance Preauthorized Code flow interacting with the configured client.
id_token switches the ability to perform the OpenID Connect Hybrid Grant flow interacting with the configured client.
vp_token switches the ability to perform the OpenID 4 Verifiable Presentations and SIOPV2 flow interacting with the configured client.
revoke switches the ability to perform the Token Revocation flow interacting with the configured client.
introspect switches the ability to perform the Token Introspection flow interacting with the configured client.
User interface
