implicit grant (removed)

RU: implicit grant (удалён)

A former OAuth 2.0 flow in which the authorization server returned an access token directly in the redirect URL fragment without issuing an authorization code first. Omitted from the OAuth 2.1 draft and strongly discouraged by RFC 9700 (which uses SHOULD NOT for this flow) because the token was exposed in browser history and Referer headers; the Authorization Code flow with PKCE is the replacement.