Reputation: 17412
Is OAuth2 TokenScope similar to Django Permissions?
I'm building a dedicated OAuth2 as a service for my application, where users will be both authenticating and authorizing themselves.
I've the following concerns
1) Is OAuth2 TokenScope similar to Django Permissions?
2) If I want to make role-level hierarchy application, how do I go about building one with OAuth2?
Upvotes: 1
Views: 64
Answers (1)
Reputation: 645
Actually there is a difference between Django permissions and OAuth token scope, Django permissions use for define access level to your endpoint addresses like when you want just authenticated user see some data but OAuth token scope is for time you want to have third-party login and you define when somebody login what access he/she has, like when you authenticate from Gmail in scope Gmail, for example, says read and you just have read access when you login . and I didn't get you concern number 2
Upvotes: 1
Related Questions
- Authorization: Any Benefit of OAuth2 for First-Party Web and Mobile Clients
- Django OAuthToolkit Scopes per specific method
- Django Rest Framework User and UserRole and Permission Handling using Token Authentication
- Using django permissions in template tags
- OAuth in django
- What is the difference between Authorization and Authentication in Django?
- Django Token Issue and Scopes
- Adding permissions to django-allauth's OAuth token
- Oauth2 for Authorization and Authentication?
- Differences between various permission levels in Django