Nikhil-Nandagopal
commented
3 months ago @jwsloan can you share a screenshot of where postman allows you to do this?
Open jwsloan opened 3 months ago
Nikhil-Nandagopal
commented
3 months ago @jwsloan can you share a screenshot of where postman allows you to do this?
Is there an existing issue for this?
Summary
AWS Cognito recommends using the IdToken returned during the Oauth 2.0 flow. Appsmith assumes the AccessToken is what is needed, and automatically chooses it.
Apps like Postman give provide a config option in the OAuth setup to state which token should be used for authentication. It would be good if Appsmith did the same.
Why should this be worked on?
AWS Cognito is a common authentication provider, and anyone who follows their recommendation of using IdToken instead of AccessToken will run into this issue.