February 2019
Intermediate to advanced
446 pages
10h 55m
English
In this grant, we provide username and password as parameters when requesting the access token, along with the grant_type, client, and scope parameters. We also need to use the client ID and secret to authenticate the request. These grant flows use client applications in place of browsers, and are normally used in mobile and desktop applications.
In the following Postman tool screenshot, the authorization header has already been added using basic authentication with client_id and password (you can use HTTP or HTTPS based on the configuration):

Read now
Unlock full access