Usage of the authorization server

This is a number of common use cases that may be helpful to understand how an authorization server is intended to be used:

Use Case


Use case for the authorization code flow with requests and responses.

Client credentials grant with (1) dynamic client registration and (2) request of an access token for the newly registered client.

Use case where a client has an access token and uses it to (1) access an IAM resource and (2) executes token introspection.

Use case where a resource forces a client to re-authenticate the user with 2nd factor only.

Various use cases of the session management endpoint.