Try Authorization Code Grant

The Authorization Code Grant is one of the grant types in the OAuth 2.0 specification. For more information about this grant type, see  Authorization Code Grant.

This section demonstrates the Authorization Code Grant with PKCE and without PKCE. 

1. Visit the URL http://wso2is.local:8080/playground2/oauth2.jsp to start the application.

2. Enter the following details and click Authorize. For information on how to obtain these authorization details, see Configuring OAuth2-OpenID Connect.

   Open

   

3. Log in with the user credentials.
   

   
   
   

4. Select Approve Once or Approve Always in Access to profile information section. Also, select the attributes you agree to share. Click Continue. 
   

   
   
   

5. Provide the following details and click on Get Access Token.

   Open

   

   At this point, the application receives the Access Token. Enter the introspection endpoint (i.e,  https://localhost:9443/oauth2/introspect ) and click Get TokenInfo to get the token information. 
   
   
   

   
   
   

   Open

   

6. Now you should be able to see the access token information as seen below, as long as the provided access token is valid. 
   

1. Visit the URL http://wso2is.local:8080/playground2/oauth2.jsp to start the application.

2. Enter the following details and click Authorize.

   Open

   

   
   
   

3. Log in with the user credentials.
   

   

4. Click Approve to consent to this action.

5. Provide the following details and click on Get Access Token.

   Open

   

6. At this point, the application receives the Access Token. Enter the introspection endpoint (i.e,  https://localhost:9443/oauth2/introspect ) and click Get TokenInfo to get the token information.

   Open

   

7. Now you should be able to see the access token information as seen below, as long as the provided access token is valid.