Machine-to-Machine (M2M) Authentication Demo

What is M2M?

Machine-to-Machine authentication allows services to authenticate without user interaction.

Uses OAuth 2.0 Client Credentials Grant - the application authenticates as itself.

Demo Configuration

Authority: {{authority}}

Client ID: {{clientId}}

{{clientDescription}}
Authentication Method: {{authMethod}}
Token Lifetime: {{tokenLifetime}}
DPoP Required: {{useDPoP}}

Client Secret: {{secret}}

Scopes: {{scopes}}

Try It Out

GET /token - Request an access token using client credentials
GET /token/decode - Get a token and decode its claims
GET /api-call - Simulate calling a protected API with the token

How It Works

1. POST to token endpoint with client credentials
2. Receive access_token in response
3. Use token in Authorization header for API calls
4. Token represents the application (not a user)