After doing a few tests I can confirm that the OIDC module supports OAuth features including the ROPC grant. See the oauth authentication grants page on the CAS docs for more information: https://apereo.github.io/cas/6.6.x/authentication/OAuth-Authentication.html#resource-owner-credentials I was able to use a simple curl command to test: curl -X POST \ https://<your login server>/cas/oidc/accessToken \ -H 'Content-Type: application/x-www-form-urlencoded' \ -d "grant_type=password&client_id=<CLIENT_ID>&client_secret=<CLIENT_SECRET>&username=<USER>&password=<PASS>&scope=profile" If you use this to test, make sure you update the values I surrounded with <> and adjust or remove the scope parameter. You can then pass the received access_token in a post request to "https://<your login server>/cas/oidc/profile" to retrieve the claims you allowed your app to access.
On Tuesday, June 13, 2023 at 9:18:55 AM UTC-4 Jeremiah Garmatter wrote: > Hello, > > I am new to OIDC but I am tasked with integrating an OIDC application to > my SSO. > One requirement for this app is the "Resource Owner Password Credential" > (ROPC) grant. > I skimmed the OIDC documents on the wiki but did not find any mention of > ROPC. > > My question is: Does the OIDC module for CAS support ROPC grant? > I use CAS 6.6. > -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/cbca29ff-1ed7-4df4-b899-4b6200cb46dfn%40apereo.org.
