1

I have SSO configured with a auth server which hosts login page and sso functionality using OAuth2. I have several clients which redirect to this auth server login page whenever authentication is required.

What I am trying to achieve is to not redirect to this auth server login page, instead somehow if a client wants to have its own custom login page then user fills in username password there and internally client connects to auth server for authentication. Hence, a user never leaves the client website.

Is it possible to achieve?

Abhinav
  • 3,322
  • 9
  • 47
  • 63
  • you can use direct grant authentication flow, which generates token by using username and password with grant_type=password – Mesar ali Oct 02 '19 at 14:59
  • @crack_iT Could you please elaborate it bit more or provide any link to some documentation. I tried to search for it, but not sure have found right thing or not – Abhinav Oct 04 '19 at 15:30
  • this can help https://auth0.com/docs/api-auth/tutorials/password-grant – Mesar ali Oct 04 '19 at 15:34
  • also Resource owner credentials grant  in https://alexbilbie.com/guide-to-oauth-2-grants/ – Mesar ali Oct 04 '19 at 15:38

0 Answers0