We have an implementation of OAuth client credentials grant type for our application. We plan to extend it by support auth code grant type for a new rest api we plan to expose to our clients. Following
this guideline we decided to implement authorization code grant type. The client of our web api would basically be a programmatic rest api client running as a standalone program. Since the auth code grant type flow involves a series of handshakes, how would it generate an access token to be used for making the api call?
Do rest api's having auth code grant type authentication have programmatic clients?
Thanks.