1 Reply Latest reply on Oct 2, 2019 12:35 PM by mebarrera

Advantage of OAuth 2.0 with grant_type=password vs Basic Auth?

eric.anastas Sep 18, 2019 4:24 PM

I want to access the Jive REST API from my desktop, or another computer that is not able to receive an authorization code from Jive (using grant_type=authorization_code)

I also see that I can use grant_type=password to obtain an Access token:
https://community.jivesoftware.com/docs/DOC-97348#jive_content_id_Obtaining_an_Access_Token_using_Resource_Owner_Passwor…

However, this requires sending the username and password of a Jive user with the request for the token? If I have to send the username and password what's the point of using OAuth and creating an add-in to get a clientId and secret? I can make a request directly to the REST API with a username and passwords and basic http authorization?

Is grant_type=client_credentials supported by the Jive REST API?
https://aaronparecki.com/oauth-2-simplified/#client-credentials

Re: Advantage of OAuth 2.0 with grant_type=password vs Basic Auth?

mebarrera Oct 2, 2019 12:35 PM (in response to eric.anastas)

Apparently not.
In the following link https://community.jivesoftware.com/docs/DOC-97348#jive_content_id_How_do_I_use_it it says that this is not implemented in Jive.
Like (0)

Actions

Legend

Correct Answers - 4 points