This article is part of the article serieĀ
Setting up OAuth 2.0 - IntroductionThere are two flows that you can use for connecting to Twinfield using OAuth 2.0:
- The authorization code flow
- The implicit flow
The main difference between the two is that the authorization code flow will give you unlimited access to the end users account for 25 years and the implicit flow will only give you access for 12 hours.
Implicit flowUse the implicit flow for native and JavaScript based clients.
Authorization code flowUse the authorization code flow if your client has some server-side back-end part. You absolutely need to have such back-end because authorization code flow requires usage of client secret to obtain tokens and you cannot store such secrets securely on front-end part of your application.
