Stanford University IdPs support OAuth 2.0 Client Credentials flow, which can be used for the following use cases:
- Server-to-server communications
- Machine-to-machine APIs
The Client Credentials flow is provided by the same Shibboleth IdP instance that also supports OpenID Connect and SAML.
Features
The Client Credentials flow is used primarily for machine-to-machine (M2M) communication where there is no user interaction. It allows applications (like APIs or services) to authenticate and authorize themselves using only their client credentials (client ID and secret).
Resource servers (such as API Providers or Servers) will be able to define their scopes and have authority on approving client scopes provisioning.
Client Credentials clients (such as API Consumer/Clients) will be able to request and create client credentials through the portal automatically.
Designed for
For staff, students and faculty.
