edyan opened a new issue, #11207:
URL: https://github.com/apache/apisix/issues/11207
### Description
Hello, I am doing a POC with Apisix and Casdoor. I wanted to use the flow
"Resource owner password credentials grant" to let my user use only their
username and password to authenticate to an application. Everything is done
programmaticaly. Nevertheless, I don't see an option or a method to do that.
It's natively supported by the keycloak plugin ("UMA") but not for
openid-connect.
I believe the request rewrite could do the job but I am not sure about
security. Thanks for your help !
### Environment
- APISIX version (run `apisix version`): 3.9
- Operating system (run `uname -a`): Redhat (Docker Image
apache/apisix:3.9.0-redhat)
- OpenResty / Nginx version (run `openresty -V` or `nginx -V`): See above
- etcd version, if relevant (run `curl
http://127.0.0.1:9090/v1/server_info`): Not using etcd but standalone mode
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
