Skip to Main Content
Customer Feedback

We love feedback from you on our products and the problems in your daily work that you would like us to solve. Please describe the challenge you're encountering and your desired outcome. Be as detailed as possible.

For technical issues or bugs please head to Support or our Developer Community. You can assign up to 20 votes in total. Thank you for your feedback.

Status explanation: 'Future Consideration' = Continuing to collect further feedback, not planned at this time. 'Investigating' = Prioritized for deeper customer and feasibility investigations ahead of planning development.

Categories API
Created by Guest
Created on Mar 14, 2023

Admin API Token Endpoint - Currently, it uses deprecated Oauth 2.0 Password grant

Admin API Token Endpoint - Currently, it uses an Oauth 2.0 Password grant. The documentation does not explicitly state this, but that is the grant type.

https://docs.developers.optimizely.com/commerce/v1.2.0-b2b-commerce/reference/admin-api-architecture


If you look up the information about this grant type, it is stated that it is deprecated.

https://oauth.net/2/grant-types/password/

Wondering if are there any plans to update the token endpoint?

I have been working on an integration with Infor M3 CSDE, and I had issues with adding the Admin Api to the new ERP's API gateway; the major blocker was that the Gateway does not support the Oauth 2.0 Password grant. I ended up creating a middleware piece to handle the token endpoint auth.

I had submitted this feed back earlier on 3-13-2023 but provided the wrong api documentation link and also bundled two issues together.