I am new to oAuth2 and laravel-passport, i don't fully understand the difference between getting access token using personal access client and password client. Your explanation would be highly appreciated. Thank you
First, Having a basic understanding of OAuth can wipe a little bit confusion. So, I'll suggest you to become familiar with general terminology. Some articles:
Now lets get back to your question!
Personal Access Clients
who has personal access tokens
are authorized to access your Resource Server
. Personal access tokens are good for giving third party applications access to your API without requiring your user to input their credentials in a potentially untrusted client.
On the other hand, Password Grant Clients
are your clients and you'd use password grant for them, where it is safe
for the users to provide their credentials manually. password grant tokens
generate while users provide valid credentials. Its generally used for first party clients and should not be used by third party clients.
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With