Access token returned by the token endpoint and used to access protected resources.
URL of the authorization server’s authorization endpoint.
Authorization code returned from the authorization endpoint.
A request to the authorization endpoint
Stores the configuration for an OAuth2 client.
A request to exchange client credentials for an access token.
Client identifier issued to the client during the registration process described by
Section 2.2.
Client password issued to the client during the registration process described by
Section 2.2.
A request to exchange an authorization code for an access token.
Value used for
CSRF protection
via the
state
parameter.
The request for an device access token from the authorization server.
The request for a set of verification codes from the authorization server.
Standard OAuth2 device authorization response.
URL of the client’s device authorization endpoint.
Device code returned by the device authorization endpoint and used to query the token endpoint.
Empty (default) extra token fields.
Empty (default) extra token fields.
URL of the end-user verification URI on the authorization server.
An HTTP request.
An HTTP response.
A request to introspect an access token.
A request to exchange resource owner credentials for an access token.
Code Challenge used for
PKCE protection via the
code_challenge
parameter.
Code Challenge Method used for
PKCE protection
via the
code_challenge_method
parameter.
Code Verifier used for
PKCE protection via the
code_verifier
parameter. The value must have a minimum length of 43 characters and a
maximum length of 128 characters. Each character must be ASCII alphanumeric or one of
the characters “-” / “.” / “_” / “~”.
URL of the client’s redirection endpoint.
Refresh token used to obtain a new access token (if supported by the authorization server).
A request to exchange a refresh token for an access token.
Resource owner’s password used directly as an authorization grant to obtain an access
token.
Resource owner’s username used directly as an authorization grant to obtain an access
token.
Authorization endpoint response (grant) type defined in
Section 3.1.1.
A request to revoke a token via an
RFC 7009
compatible
endpoint.
URL of the authorization server’s RFC 7009 token revocation endpoint.
Access token scope, as defined by the authorization server.
Error response returned by server after requesting an access token.
Standard OAuth2 token introspection response.
Standard OAuth2 token response.
URL of the authorization server’s token endpoint.
User code returned by the device authorization endpoint and used by the user to authorize at
the verification URI.
Verification URI returned by the device authorization endpoint and visited by the user
to authorize. Contains the user code.