Closed michielbdejong closed 2 months ago
funny insight: we're not actually using the scope parameter to identify scopes at all! The code is what identifies the grant, and thus the scope.
the resource server shares a language with secondary server the resource server either:
distinguish two information flows:
two options for secondary -> resource server, if via introspect:
sometimes the client will not need config info, but the RS still needs the RH
where do we come from, which problem do we want to solve, why do we do it this way, what did we put into it conceptually