Skip to content

feat(provider): add OAuth 2.0 client credentials grant type support #279

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
taxilian wants to merge 2 commits into
base: master
Choose a base branch
from
Open

feat(provider): add OAuth 2.0 client credentials grant type support #279

taxilian wants to merge 2 commits into from

Conversation

@taxilian
Copy link

@taxilian taxilian commented Jun 17, 2025

Implements RFC 6749 client credentials flow for machine-to-machine authentication:

  • Add new ClientCredentialsProvider with customizable verify function
  • Support for custom scopes and token properties
  • Update issuer to handle client credentials flow in /token endpoint
  • Add grant_types_supported to .well-known/openid-configuration
  • Include token_type: "Bearer" in all token responses per OAuth 2.0 spec
  • Add comprehensive tests for client credentials authentication
  • Add test to ensure that the endpoint discovery is correct
  • Add example implementation with service database pattern
  • Update documentation generation to include new provider

The client credentials flow allows services to authenticate directly using client_id and client_secret without user interaction, ideal for API-to-API communication and backend services.

taxilian added 2 commits June 17, 2025 14:32
@taxilian
feat(provider): add OAuth 2.0 client credentials grant type support
edb1ccd 
Implements RFC 6749 client credentials flow for machine-to-machine
authentication:

- Add new ClientCredentialsProvider with customizable verify function
- Support for custom scopes and token properties
- Update issuer to handle client credentials flow in /token endpoint
- Add grant_types_supported to .well-known/openid-configuration
- Include token_type: "Bearer" in all token responses per OAuth 2.0 spec
- Add comprehensive tests for client credentials authentication
- Add test to ensure that the endpoint discovery is correct
- Add example implementation with service database pattern
- Update documentation generation to include new provider

The client credentials flow allows services to authenticate directly using
client_id and client_secret without user interaction, ideal for API-to-API
communication and backend services.
@taxilian
fix: provider field shouldn't be provided if grant_type is client-cre…
fd05747 
…dentials
@changeset-bot
Copy link

changeset-bot bot commented Jul 14, 2025

⚠️ No Changeset found

Latest commit: fd05747

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@taxilian