Hello,
I am currently implementing an API to generate an access token following the Device Authorization Grant guideline specified in RFC 8628 using the OAuthV2 policy.
However the SupportedGrantTypes cannot be valued with the mandatory “urn:ietf:params:oauth:grant-type:device_code” nor the request parameter grant_type as required in RFC 8628 (Error Saving Revision Invalid grant type: urn:ietf:params:oauth:grant-type:device_code.)
Is it possible to confirm whether this grant_type is supported or not by the Apigee EDGE product / OAuthV2 policy ?
Thank you
Hi @WilliamSergeant ,
The Device Authorization Grant is not currently supported by the Apigee Edge OAuthV2 policy. The SupportedGrantTypes configuration does not recognize this grant type, and attempting to use it will result in an error like the one you encountered.
According to the OAuthV2 policy documentation, the supported grant types in Apigee Edge are:
- authorization_code
- password
- implicit
- client_credentials
- refresh_token
Hi @nmarkevich and thank you for the explaination
Would you recommend using another grant type as a fallback ?
You can check if your device supports some browser and then try to implement authorization code grant.