role和scope的关系 #16
NotFound403
started this conversation in
General
role和scope的关系
#16
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
-
OAuth2Client
客户端指的是OAuth2 Client,但又不单单是一个OAuth2 Client,连id server本身都是一个客户端。
role和scope的关系role和scope其实是一个东西,只不过面向的对象不一样。role针对的是资源拥有者(Resource Owner),而scope针对的是OAuth2客户端。举个例子,ROLE_email是用户具有获取电子邮件信息的接口访问权限,SCOPE_email是拥有ROLE_email权限的用户授权OAuth2客户端访问获取电子邮件信息接口,用户如果没有这个权限,那他凭什么授权呢?Beta Was this translation helpful? Give feedback.
All reactions