ACP authorization grant flows

ACP OAuth flows
Description of the supported ACP OAuth flows
ACP authorization code grant flow
Learn what an authorization code grant is and what its process is. Find out what type of applications can use the authorization code grant flow in a safe and secure manner.
ACP authorization code grant flow with PKCE
Learn what an authorization code grant with the Proof Key of Code Exchange is and what its process is. Find out which applications can use the authorization code grant flow with PKCE in a safe and secure manner.
ACP hybrid flow
This article explains what the hybrid grant flow type is and how it works.
ACP client credentials grant flow
Client credentials grant is a flow used for communication between single or multi services and applications. It can be used by, for example, applications that process batches or integrate multiple systems.
Refresh token grant
This article describes what refresh tokens are and how they are used in Authorization Control Plane (ACP)
Token exchange
Learn what OAuth 2.0 token exchange is, how it works, and how you can use it to exchange access tokens from different sources to access tokens provided by Authorization Control Plane.
ACP Client-Initiated Backchannel Authentication Flow
Learn what the Client-Initiated Backchannel Authentication Flow is and how it works in Authorization Control Plane (ACP). Get familiar with three flow types (modes) of CIBA: PING, POLL, and PUSH.
ACP implicit grant flow type
This article explains what the implicit grant flow type is and how it works. It provides information why the implicit grant flow is not recommended.