Support for JSON Web Tokens ?

[xmlking]

Really nice and well thought out implementation. :+1:

I am interested to run OAuth server and and resource server(s) on separate JVMs.
in this case, JWTs helps reduce network roundtrips to validate token by resource server. they also work nicely with Angular front-end.

1. wonder if you can have JWT option?
2. Instead of Basic Auth , can you support REST endpoint where username/password can be POSTed?
3. Just a suggestion, you could use Gradle multi-project setup to provide us two separate grails apps (one for OAuth server and one for demo resource server) in the same repository.

[bobbywarner]

Thanks for the feedback!

• Sure, JWT would be a great addition to the sample app! It's supported in Spring Security OAuth, so it should be pretty easy to plug it in.
• I'm not sure what the other options are for the /oauth/token endpoint in Spring Security OAuth besides basic auth. I'll have to look into it.
• Yup, this would also be a great addition to the golden sample of separate resource and authorization servers. I've actually already started playing around with it too!