Implicit Grant Type¶
However, an access token granted through the implicit flow should only be able to read resources and never perform any destructive operations.
How does it work?¶
The implicit grant type is similar to the authorization code grant type as it will be redirected to an authorization server. However, unlike the authorization code grant type, it will be redirected along with an access token instead of an authorization code. The implicit grant type does not authenticate the client and instead relies on the presence of the resource owner and the registration of the redirection URI.
The diagram below illustrates the implicit grant flow.
The URL below can be used to try this grant type.
You will receive a response similar to the format below.
Support for refresh token grant
This grant type does not issue a refresh token which can be used to obtain new access tokens using the refresh token grant. refresh token grant.