CiscoXaaSAPI
OAuth 2.0 Documentation
Grant Types
When requesting access for the API, there are various selections available for OAuth grant type. This guide is intended to inform you the differences between them and which is right for you.
Resource Owner Grant
The resource owner password credentials grant type is suitable in cases where the resource owner has a trust relationship with the client, such as the device operating system or a highly privileged application. The authorization server should take special care when enabling this grant type and only allow it when other flows are not viable.
Client Credentials Grant {Not Supported for this API}
The client credentials (or other forms of client authentication) can be used as an authorization grant when the authorization scope is limited to the protected resources under the control of the client, or to protected resources previously arranged with the authorization server. Client credentials are used as an authorization grant typically when the client is acting on its own behalf (the client is also the resource owner) or is requesting access to protected resources based on an authorization previously arranged with the authorization server.
Implicit Grant {Not Supported for this API}
The implicit grant type is used to obtain access tokens (it does not support the issuance of refresh tokens) and is optimized for public clients known to operate a particular redirection URI. Unlike the authorization code grant type, in which the client makes separate requests for authorization and for an access token, the client receives the access token as the result of the authorization request.
Authorization Grant Code
The authorization code grant type is used to obtain both access tokens and refresh tokens and is optimized for confidential clients.
%%%