I suggest you ...

Document resource owner password credential grant (ROPC)

AAD supports Resource Owner Password Credential grant (ROPC) behind the scenes, however, its not documented in the AAD OAUTH2 manual.

In certain use cases, there is no obvious OAUTH2 grant flow and ROPC might become the solution. In such situations, its better that Microsoft documents it, how to properly use it in a somewhat secure manner, and when to absolutely not use it, rather than to let people shoot themselves in the foot with an undocumented feature.

1 vote
Vote
Sign in
(thinking…)
Sign in with: Microsoft
Signed in as (Sign out)
You have left! (?) (thinking…)
Sverre shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

0 comments

Sign in
(thinking…)
Sign in with: Microsoft
Signed in as (Sign out)
Submitting...

Feedback and Knowledge Base