Changeset View
Changeset View
Standalone View
Standalone View
src/docs/contributor/using_oauthserver.diviner
Show First 20 Lines • Show All 104 Lines • ▼ Show 20 Lines | |||||
If the token has expired or is otherwise invalid, the client will receive | If the token has expired or is otherwise invalid, the client will receive | ||||
an error indicating as such. In these cases, the client should re-initiate | an error indicating as such. In these cases, the client should re-initiate | ||||
the entire `Authorization Code Grant` flow. | the entire `Authorization Code Grant` flow. | ||||
NOTE: See "Scopes" section below for more information on what data is | NOTE: See "Scopes" section below for more information on what data is | ||||
currently exposed through the OAuth Server. | currently exposed through the OAuth Server. | ||||
= Scopes = | Scopes | ||||
====== | |||||
There are only two scopes supported at this time. | //This section has not been written yet.// | ||||
- **offline_access** - allows an access token to work indefinitely without | |||||
expiring. | |||||
- **whoami** - allows the client to access the results of Conduit.whoami on | |||||
behalf of the resource owner. |