Changeset View
Changeset View
Standalone View
Standalone View
src/docs/contributor/using_oauthserver.diviner
| Show First 20 Lines • Show All 104 Lines • ▼ Show 20 Lines | |||||
| If the token has expired or is otherwise invalid, the client will receive | If the token has expired or is otherwise invalid, the client will receive | ||||
| an error indicating as such. In these cases, the client should re-initiate | an error indicating as such. In these cases, the client should re-initiate | ||||
| the entire `Authorization Code Grant` flow. | the entire `Authorization Code Grant` flow. | ||||
| NOTE: See "Scopes" section below for more information on what data is | NOTE: See "Scopes" section below for more information on what data is | ||||
| currently exposed through the OAuth Server. | currently exposed through the OAuth Server. | ||||
| = Scopes = | Scopes | ||||
| ====== | |||||
| There are only two scopes supported at this time. | //This section has not been written yet.// | ||||
| - **offline_access** - allows an access token to work indefinitely without | |||||
| expiring. | |||||
| - **whoami** - allows the client to access the results of Conduit.whoami on | |||||
| behalf of the resource owner. | |||||