[英]Is there an one-for-all OAuth2 workflow that I can use for multiple client types?
I am building an application that will be secured by OAuth2. 我正在构建一个将由OAuth2保护的应用程序。 The types of users I expect are as below: 我期望的用户类型如下:
My Questions: 我的问题:
The Authorization Code grant type could cover all of the use case you mention. 授权码授予类型可以涵盖您提到的所有用例。 Even for non-confidential 3rd-party JS applications, though the Implicit grant was designed for that use case, current recommendations seem to point in the direction of the Authorization Code grant type. 即使对于非机密的第三方JS应用程序,尽管隐式授予是针对该用例设计的,但当前的建议似乎指向授权代码授予类型的方向。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.