oauth2-server/repository-interface-client.md

---
layout: default
title: ClientRepositoryInterface documentation
permalink: /client-repository-interface/
---

# Client Repository Interface

## getClientEntity() : ClientEntityInterface

This method is called to validate a client's credentials.

The client secret may or may not be provided depending on the request sent by the client. The boolean `$mustValidateSecret` parameter will indicate whether or not the client secret must be validated. If the client is confidential (i.e. is capable of securely storing a secret) and `$mustValidateSecret === true` then the secret must be validated.

You can use the grant type to determine if the client is permitted to use the grant type.

If the client's credentials are validated you should return an instance of `\League\OAuth2\Server\Entities\Interfaces\ClientEntityInterface`
More doc updates 2016-03-24 21:52:45 +05:30			`---`
			`layout: default`
			`title: ClientRepositoryInterface documentation`
			`permalink: /client-repository-interface/`
			`---`

			`# Client Repository Interface`

			`## getClientEntity() : ClientEntityInterface`

			`This method is called to validate a client's credentials.`

Documented `$mustValidateSecret` parameter 2016-04-18 13:08:36 +05:30			The client secret may or may not be provided depending on the request sent by the client. The boolean `$mustValidateSecret` parameter will indicate whether or not the client secret must be validated. If the client is confidential (i.e. is capable of securely storing a secret) and `$mustValidateSecret === true` then the secret must be validated.
More doc updates 2016-03-24 21:52:45 +05:30
			`You can use the grant type to determine if the client is permitted to use the grant type.`

Documented `$mustValidateSecret` parameter 2016-04-18 13:08:36 +05:30			If the client's credentials are validated you should return an instance of `\League\OAuth2\Server\Entities\Interfaces\ClientEntityInterface`