My idea is:
Currently, Mautic only supports the the authorization_code
and refresh_token
grant types for OAuth2 authentication against the REST API.
Please add support for the client_credential
and password
grants in OAuth2 to:
- Make authentication easier for people who want to use the REST API
- Allow the Mautic contributors to deprecate support for OAuth1a (which is a fork that’s currently maintained by Mautic contributors) and focus development efforts on OAuth2
I think these groups of people would benefit from this idea:
People who want to use Mautic’s REST API and Mautic core contributors (less maintenance)
Why I think they would benefit from this idea:
See above
Any code or resources to support this idea:
Not yet (TBD)
Are you willing to work on this idea?:
Yes, if time allows
What skills and resources do you need to explore this further?
A better understanding of the OAuth2 library that’s currently used by Mautic (friendsofsymfony/oauth-server-bundle if I’m not mistaken?)