edyan commented on issue #11207: URL: https://github.com/apache/apisix/issues/11207#issuecomment-2082095910
Hello, _The Resource Owner Password Credentials (ROPC) grant flow lets the client use the resource owner's user name and password to get an access token._ I have an API behind APISIX. APISIX check the authentication via Casdoor. When a user wants to get a token for the API, it goes to Casdoor, request a token by providing a client_id, username and password. I would like to hide the client_id and that the user only provides his username / password. Exactly like what the keycloak plugin does : https://apisix.apache.org/docs/apisix/3.1/plugins/authz-keycloak/#generating-a-token-using-password-grant Is it something I need to code myself or is it something that apisix is able to natively handle ? Thanks -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
