February 2019
Intermediate to advanced
442 pages
11h 46m
English
Content preview from Spring 5.0 Projects
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
Which grant type should be used?
Having seen the details about each grant type, it is important to understand the right grant type for a given application. There are various factors that play a vital role in grant type selection, like end user identification, the type of client (server-side, web-based, native, client-side), and the level of assurance between the client and resource owner.
If we are planning to build an app and allow for the access of resources to other third-party apps, then the authorization code flow is the right choice. It is a highly recommended grant type for a publicly hosted application. On the other hand, if a client is JavaScript-based and runs in a browser, we should go with the implicit grant type for a third-party ...