OAuth2 Flows and Wallets
Nuts supports 2 OAuth2 flows for acquiring an access token. The service-to-service flow and the user flow.
Service-to-Service flow
The service-to-service flows is for data exchanges that don't require the presence of a (human) user. Credentials that are presented during this flow are typically subject to legal organizations (e.g. registered care organizations).
When to use
Data exchanges for which this flow is suitable are background processes or exchanges that aren't subject to GDPR (or other local privacy regulations).
This flow uses a custom grant type called vp_token-bearer
. Presentation requests always and only target organization
wallets.