Cidaas Client types
OAuth 2.0 defines two client/App types, based on their ability to authenticate securely with the authorization server (i.e., ability to maintain the confidentiality of their client credentials):
Confidential: Confidentical clients are clients which have the ability to maintain the confidentiality of the client_secret. Typically these clients are only applications that run on a server under the control of the developer, where the source code is not accessible to users. These types of applications are commonly referred to as “web apps,” since they are most often accessed by a web browser. (e.g., client implemented on a secure server with restricted access to the client credentials).