[Openid-specs-ab] Issue #1315: Allow other grant_type other than code (openid/connect)
Edmund Jay
issues-reply at bitbucket.org
Thu Aug 19 09:16:09 UTC 2021
New issue 1315: Allow other grant_type other than code
https://bitbucket.org/openid/connect/issues/1315/allow-other-grant_type-other-than-code
Edmund Jay:
Comments from TL regarding for [pull request #39](https://bitbucket.org/openid/connect/pull-requests/39/merging-cp-into-ca)
[https://bitbucket.org/openid/connect/pull-requests/39/merging-cp-into-ca#comment-238240377](https://bitbucket.org/openid/connect/pull-requests/39/merging-cp-into-ca#comment-238240377)
I don’t see a benefit of limiting the grant type to code. Why not using CIBA or device as well? I basically think an endpoints design should never depend on the type of OAuth/OIDC flow used to obtain \(access\) tokens.
More information about the Openid-specs-ab
mailing list