How to use implicit grant type in OAuth 2.0 for mobile apps?

前端 未结 2 2029
醉梦人生
醉梦人生 2021-02-10 06:47

I have read a tutorial regarding OAuth 2.0 and implicit grant type. I still don\'t understand how implicit grant type will work for mobile (iOS or Android). For example if we cr

2条回答
  •  太阳男子
    2021-02-10 07:02

    The implicit grant type isn't well suited for mobile apps. This is what the corresponding RFC (RFC 6749) has to say about it:

    The implicit grant is a simplified authorization code flow optimized for clients implemented in a browser using a scripting language such as JavaScript.

    For a mobile app, you're better off with the Resource Owner Password Credentials flow if you're making the official app for your own service, or the Authorization Code flow if you're accessing a third-party web service.

提交回复
热议问题