B
bronco
Guest
I was thinking about GUI clients (plain or ABL.NET) as well (client type doesn't really matter). Suppose you're supporting both an Angular and an ABL (GUI) client, what would be better than to be able to support one security mechanism (the Oauth2 / Spring security that is). If the ability exisis, the ABL client could be a trusted (i.e. your own) client as well as a 3rd party client. It's all depends on the whether any client is able to "inject" a Authorization Bearer token to an HTTP call.
Continue reading...
Continue reading...