A customer has a developed an OAuth 2.0 Client application to access resources on behalf of a user. The customer states
Posted: Fri Aug 26, 2022 9:58 am
A customer has a developed an OAuth 2.0 Client application to access resources on behalf of a user. The customer states that the OAuth client has the following two constraints:1. The OAuth client is not capable of maintaining its credentials confidential for authentication with the authorization server.2. The resources owner does not have a trust relationship with the client.What is the suitable OAuth 2.0 grant type for the API Protection Policy if the user resource accessed by the OAuth 2.0 client is to be protected by IBM SecurityAccess Manager V9.0?
A. Implicit Grant
B. Client Credential Grant
C. Authorization Code Grant
D. Resource Owner Password Credentials Grant
A. Implicit Grant
B. Client Credential Grant
C. Authorization Code Grant
D. Resource Owner Password Credentials Grant