Jan 9 路 5 min read 路 Getting a grant for a startup sounds perfect on paper. Free money. No equity. No repayment.But once you actually try, reality hits hard. After 10+ years providing Grant Writing Services to early-stage founders,, nonprofit leaders, and first-time gran...
Join discussionAug 18, 2024 路 9 min read 路 Understanding Apigee Grant Types: A Guide to OAuth 2.0 Authentication In the realm of API management, securing access to your services is paramount. One of the most robust frameworks for achieving this is OAuth 2.0, and Apigee, a leading API manageme...
Join discussion
Jul 17, 2024 路 6 min read 路 When we talk about OAuth2 and OpenID Connect(OIDC), we cannot talk about how those two operate by providing access to the client applications without talking about grant types. In simple terms, grant type is a mechanism to provide access to protecte...
Join discussion
Mar 11, 2024 路 3 min read 路 馃К Introduction We have already discussed how you can gain access via the Authorization Code Grant flow. In this article, we will look at an extension of that, how to use Authorization Code Grant flow with PKCE. PKCE is an acronym for Proof Key for C...
Join discussion
Mar 10, 2024 路 7 min read 路 馃К Introduction SAML2.0 Bearer Grant is a grant type in the OAuth2.0 framework that enables the exchange of a SAML2.0 assertion for an OAuth2.0 token. This grant type is defined in the SAML2.0 Profile for OAuth2.0 Client Authentication and Authorizat...
Join discussion
Mar 8, 2024 路 8 min read 路 馃К Introduction OAuth2.0 JWT Bearer Grant type is a grant type that enables the exchange of one JWT token for another. When a request is made to the /oauth2/token endpoint, with the JWT Bearer Grant type, the JWT assertion, the Client ID, and the Cli...
Join discussion
Mar 8, 2024 路 4 min read 路 馃К Introduction As we discussed in the Authorization Code Flow article, the Implicit Grant flow is an authentication flow defined in the OIDC specification that allows you to authenticate a user and obtain an AccessToken. The Implicit Grant flow allo...
Join discussion
Mar 8, 2024 路 3 min read 路 馃К Introduction The Client Credentials Grant type provides a secure way for client applications to obtain an Access Token without user authentication. This can be useful in scenarios where the client application needs to access its own resources, suc...
Join discussion
Mar 8, 2024 路 3 min read 路 馃К Introduction The Password Grant flow is an OAuth2.0 grant type that enables a client application to obtain an access token by presenting the user's username and password directly to the Authorization Server. This flow is considered to be less secu...
Join discussion
Mar 8, 2024 路 3 min read 路 馃К Introduction The Refresh Token Grant provides a way for client applications to obtain a new Access Token without requiring the user to re-authenticate. This can help improve the user experience by avoiding unnecessary login prompts and reducing th...
Join discussion