passport-ropc
ROPC is a form of OAuth for trusted first party development, rather than redirecting the user to a website to log in separately and approve access a log in (as is typical for traditional OAuth) the user provides the password to the app that has implemnted ROPC. Because the user provides the password directly to the implementing app, it should only be used by first-party app development.
Supported Grant Types
- password
- refresh_token
Example
const express = ;const passport = ;const OAuth2RopcStrategy = OAuth2RopcStrategy; passport; passport; passport; const app = ;// Bring your own bodyparser & session/cookie management app; app;