Hi All,
According to OAuth2 specification, when creating an OAuth application using
DCR, it should be given back OAuth application credentials. If same
application is happened to be created again should it give existing
application credentials?
Figure 01: This is the abstract extended dynamic client
registration flow as explains here[1].
But in APIM[2], it behaves somewhat different than this[1]. I tried to
create an application which already exist then it will throw an internal
error. In EMM[3], it gives existing application credentials.
In APIM[2], Is there any specific reason to behave in this manner?
1.
https://self-issued.info/docs/draft-ietf-oauth-dyn-reg-management-04.html#OAuth.Registration
2. https://docs.wso2.com/display/AM1100/apidocs/store/#guide
3.
https://docs.wso2.com/display/EMM201/Generating+the+OAuth+2.0+Access+Token
Thanks,
Geesara
--
Geesara Prathap Kulathunga
Software Engineer
WSO2 Inc; http://wso2.com
Mobile : +940772684174
_______________________________________________
Architecture mailing list
[email protected]
https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
