Application allowed grant types: Client Credentials

The client credentials flow example on https://developer.okta.com/docs/guides/implement-client-creds/use-flow/ or https://developer.okta.com/docs/reference/api/oidc/#token speaks of grant_type client_credentials.

Yet when I’m looking at my application’s general settings, the only allowed grant types I’m presented with as options are Authorization Code, Refresh Token, Resource Owner Password, and Implicit (Hybrid).

As a result, my token requests fail with {"error":"unauthorized_client","error_description":"The client is not authorized to use the provided grant type. Configured grant types: [authorization_code, password, refresh_token]."}

I’ve dug around the forums, googled everything I can imagine, mucked around with various application types and settings. No dice. Figured I’d come to the forums as a last resort. Any idea what I’m doing wrong?

Thanks in advance!

Select this app type:

image

Unfortunately, no “OAuth Service” platform option exists for me.

I’ve tried OpenID connection, which provides me with a client ID and a client secret, but no option for grant_type of client_credentials.

It sounds like you need to create a developer account. Our IT Trial doesn’t have the same capabilities. Go to https://developer.okta.com to create a developer account.

1 Like