I noticed that invoking http://localhost:3000/oauth/token (POST) need to have Authorization: Basic encoded(client_id + ':' + client_secret) as part of the header. My concern now what if i only need to have an access token doesn't care the client_id and client_key is it possible to achieved in this case?
Hi,
I noticed that invoking http://localhost:3000/oauth/token (POST) need to have Authorization: Basic encoded(client_id + ':' + client_secret) as part of the header. My concern now what if i only need to have an access token doesn't care the client_id and client_key is it possible to achieved in this case?
Sample: { method: 'POST', uri: 'http://localhost:3000/oauth/token', form: { grant_type: 'password', username: 'testuser', password: 'testpassword', scope: 'profile' }, headers: { 'Content-Type': 'application/x-www-form-urlencoded', Authorization: 'Basic testuser:testpassword' } }