mod_http_oauth2: Reflect changes to defaults etc
- Resource owner password grant was disabled by default
- Tokens now include a hash of client_id making it possible to be
reasonable sure that they were issued to a particular client
---
labels:
- 'Type-Auth'
summary: SASL OAuthBearer Mechanism
...
Introduction
============
This module adds a new SASL mechanism OAUTHBEARER, as defined in [RFC-7628](https://tools.ietf.org/html/rfc7628).
It's intended to be used together with the `mod_auth_oauthbearer.lua` module.