Identityserver4: Disable any existing grant_type

Created on 18 Oct 2017  路  5Comments  路  Source: IdentityServer/IdentityServer4

Is it possible to disable any specific grant_type for an installation and instead use custom grant type only?

Example: "password" grant_type can be disabled and a custom grant type only works for token end point.

question
Source
picture satyajit-behera

All 5 comments

No.

You can disable password by not providing an implementation of the resource owner validator.

leastprivilege picture leastprivilege on 18 Oct 2017
👍1

Thanks. I have a scenario where the user needs to pass more parameter in addition to user name and password for generating token. I can easily create this using "IExtensionGrantValidator".

But the user can also login using only the username and password without providing the additional parameters if I don't disable the default resource owner validator.

Is this scenario possible?

satyajit-behera picture satyajit-behera on 18 Oct 2017

You can disable the password grant - as I said above already.

leastprivilege picture leastprivilege on 18 Oct 2017
👍1

Thanks

satyajit-behera picture satyajit-behera on 18 Oct 2017

This thread has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs.

lock[bot] picture lock[bot] on 14 Jan 2020
Was this page helpful?
0 / 5 - 0 ratings

Related issues

user1336 picture user1336  路  3Comments
osmankibar picture osmankibar  路  3Comments
not-good-with-usernames picture not-good-with-usernames  路  3Comments
Aravind1729 picture Aravind1729  路  3Comments
chrisrestall picture chrisrestall  路  3Comments