Baz
Reputation: 13175
What oauth 2.0 endpoint is used to validate a bearer token
I have an oauth 2 server implemented using django oauth2 provider.
I am implementing the client credentials flow in an api.
The client app POSTs to the oauth server's /token/ endpoint to get the access token. That is then sent to my api in the header. What endpoint should the api then call on the oauth server to validate this token, when using a back channel?
Upvotes: 2
Views: 150
Answers (2)
Sujay S Badge
Reputation: 153
There is an easy solution to your problem implement django-allauth every thing is taken care.
Upvotes: 0
Related Questions
- JWT refresh token flow
- How to validate an OAuth 2.0 access token for a resource server?
- What are Bearer Tokens and token_type in OAuth 2?
- CORS: Cannot use wildcard in Access-Control-Allow-Origin when credentials flag is true
- What is the purpose of the implicit grant authorization type in OAuth 2?
- Why do access tokens expire?
- Refreshing OAuth token using Retrofit without modifying all calls
- Why is there an "Authorization Code" flow in OAuth2 when "Implicit" flow works so well?
- How does OAuth 2 protect against things like replay attacks using the Security Token?
- What is the difference between the OAuth Authorization Code and Implicit workflows? When to use each one?