mod_http_oauth2: Hint at future deprecation of resource owner password grant
It is strongly discouraged by all the modern OAuth 2.0 (and 2.1) documents.
--- a/mod_http_oauth2/README.markdown Fri Jul 21 00:37:34 2023 +0200
+++ b/mod_http_oauth2/README.markdown Fri Jul 21 00:38:04 2023 +0200
@@ -213,7 +213,7 @@
- Authorization Code grant, optionally with Proof Key for Code Exchange
- Device Authorization Grant
-- Resource owner password grant
+- Resource owner password grant *(likely to be phased out in the future)*
- Implicit flow *(disabled by default)*
- Refresh Token grants