When generating a token as part of the device_code grant type (i.e., the last step) the client id and key are both required: if we try a call like this:
$ curl -H "content-type: application/json" -d '{"grant_type": "device_code", "device_code": "some_code"}' https://icicleai.tapis.io/v3/oauth2/tokens
we get an error like this:
{"message":"Invalid client credentials: None, None. session: <SecureCookieSession {}>","metadata":{},"result":null,"status":"error","version":"dev"}
The whole point of device code is that it can replace password grant for CLIs and other "headless" apps, so this needs to be fixed.
When generating a token as part of the device_code grant type (i.e., the last step) the client id and key are both required: if we try a call like this:
$ curl -H "content-type: application/json" -d '{"grant_type": "device_code", "device_code": "some_code"}' https://icicleai.tapis.io/v3/oauth2/tokens
we get an error like this:{"message":"Invalid client credentials: None, None. session: <SecureCookieSession {}>","metadata":{},"result":null,"status":"error","version":"dev"}
The whole point of device code is that it can replace password grant for CLIs and other "headless" apps, so this needs to be fixed.