I'm integrating FOSOAuthServerBundle to handle login from an angular front-end.
I have made a client with grant-type password. So my request looks like:
/oauth/v2/token?client_id=[CLIENTID]&client_secret=[CLIENTSECRET]&grant_type=password&username=[USERNAME]&password=[PASSWORD]
I think it's pretty safe because the client only has grant-type password. The only part that isn't safe, are the user credentials (username and password). They are sent plain to the backend and I want them encrypted.
How can i handle the hashed credentials in the FOSOAuthServerBundle?