Hi Harshan > > In the step 11, you have mentioned that the device sends authentication > request, generate access and refresh tokens and send it to device. However > you need client credentials (client key, secret) in-order to generate > access tokens. How are you planing to get these client credentials prior to > generating access tokens? In the existing EMM implementation we use > Dynamic-client-registration to do that. I think we can use the same here. > However we need to modify the flow diagram to reflect that. >
For bulk installation use case how about creating a custom grant type handler which takes the OTT and validate and then provide an access token as a response. Therefore in current flow we can replace the password grant type handler with a custom grant type handler.
_______________________________________________ Architecture mailing list [email protected] https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
