singhpk234 commented on issue #2581: URL: https://github.com/apache/polaris/issues/2581#issuecomment-3303569057
Thank you @adutra ! This helps me understand this better > the catalog server must expose a new endpoint, by default /.well-known/oauth-protected-resource I see so the client needs to contact this endpoint to get the AS servers to know as well as which scopes they need, then lets say they need to do client credentials flow, they will do with this scope and get the OAuth and then use this for subsequent Auth ? wondering still when is the case this flow be better than what we already have ? is it like it takes the responsibility from the client to know the AS directly and the scopes ? -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
