Replies: 1 comment
-
|
Also just want to say how amazing Passport is, thank you to the Laravel team for making our lives so much easier. I wanted to give a bit a background on what we are doing. We are using the PKCE authorization_code flow to authenticate our own separate front-end. We wanted to use PKCE because it meant we could keep all the authentication in Laravel. So because this specific client should act like it's a first-party client signing in, it needs all the scopes. Please advise me if authorization_code/PKCE is a bad idea for this use case. |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
Uh oh!
There was an error while loading. Please reload this page.
-
So I've just discovered that when using Laravel passport, you can't request all scopes if using the "authorization_code" grant type. I can't seem to find much on the internet why, so would someone care to explain why I'm not able to add these scopes? I've attached the block of code below from Passport which removes the "all" scope.
Is this an Oauth 2 specification?
Thank you!
Sam
Beta Was this translation helpful? Give feedback.
All reactions