Curl request for implicit grant type on fiware keyrock?

Question

I wanted to fire a curl request for implicit grant type on fiware idm. I have gone through the official docs of fiware idm-

https://fiware-idm.readthedocs.io/en/latest/oauth/oauth_documentation/index.html

Implicit grant type exists in fiware idm, but while making a curl request it throws the following error:

{"error":"unsupported_grant_type"}

My curl request is as follows:

curl -X POST -H 
"Authorization: Basic $(echo -n 56c32d7-c991-4da0-8b0a-018461ac583e6:0ec8898c-3bc7-12cd-8abd-0d6abgh01c56 | base64 -w 0)" --header "Content-Type: application/x-www-form-urlencoded" -d "grant_type=implicit&username=admin@test.com&password=1234" https://Keyrock_Host:Keyrock_Port/oauth2/token --insecure

Does anyone know about it ?

Answer 1

The body of your request is incorrect, it appears you are passing in the required data for the Password Grant not the Implicit Grant.

For an Implicit Grant in OAuth2 you need a token or code request passing the client-id:

GET /oauth/authorize?
response_type=token&
client_id={{client-id}}&
state=xyz&
redirect_uri={{callback_url}}

This is the case where an application itself is requesting access to resources, and the client-id and callback-url ar already registered within the IDM

see:

• https://fiware-tutorials.readthedocs.io/en/latest/securing-access/index.html#implicit-grant

• https://auth0.com/blog/oauth2-implicit-grant-and-spa/