1 Reply Latest reply on Oct 2, 2019 12:35 PM by mebarrera

    Advantage of OAuth 2.0 with grant_type=password vs Basic Auth?

    eric.anastas Novice

      I want to access the Jive REST API from my desktop, or another computer that is not able to receive an authorization code from Jive (using grant_type=authorization_code)

      I also see that I can use grant_type=password to obtain an Access token:
      https://community.jivesoftware.com/docs/DOC-97348#jive_content_id_Obtaining_an_Access_Token_using_Resource_Owner_Passwor…

      However, this requires sending the username and password of a Jive user with the request for the token? If I have to send the username and password what's the point of using OAuth and creating an add-in to get a clientId and secret? I can make a request directly to the REST API with a username and passwords and basic http authorization?

      Is grant_type=client_credentials supported by the Jive REST API?
      https://aaronparecki.com/oauth-2-simplified/#client-credentials