stackoom
  简体   繁体   中英

What is the difference between access tokens and auth_codes in OAuth 2

 原文  2012-03-19 10:44:31       php/ oauth/ oauth-2.0

Question

I am using the OAuth 2.0 PHP Library to develop a OAuth 2.0 server in PHP.

In the example of that library I can see 3 tables: auth_codes , clients and tokens .

As far as I know tokens are used to access the data and auth codes are used to obtain tokens.

But the problem is that if i do 

...authorize.php?client_id=0123456789ab&response_type=token&state=test_state

I can get token without even getting the access code.

How is that possible ? Is this a proper implementation ?

1 answers

solution1
 8 ACCPTED  2012-03-19 10:54:36

There are two flows for OAuth2 authentcation.

  1. Two-legged OAuth
  2. Three-legged OAuth

Here you have encountered 2-legged OAuth which doesn't require the auth_code to get access_token dance :)

These are some useful links that will help you understand the difference better.

  1. http://cakebaker.42dh.com/2011/01/10/2-legged-vs-3-legged-oauth/
  2. https://sites.google.com/site/oauthgoog/2leggedoauth/2opensocialrestapi

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question What is the difference between auth and access in Laravel 5.7? What is the difference between these two codes Reusing OAuth Access Tokens What is difference between Auth::onceUsingID() and Auth::setUser() in Laravel-8 What is the difference between auth()->loginUsingId(1); vs Auth::loginUsingId(1); what is the difference between Auth::routes() and Route::auth() in laravel What is the difference between the below sample codes in Laravel 5.4 Converting Authorization Codes To Access Tokens in laravel not working Sharing OAuth2 tokens between providers Oauth2 client + user access tokens flow
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM