In which of the following must an application developer provide an HTTP authorization header in requests that are sent to operations requiring that type of authentication?
OAuth 2.0 provider APIs can support multiple OAuth flows, each of which corresponds to an OAuth grant type. What are two valid OAuth flows and the corresponding OAuth grant types? (Select two.)