Hardy ErlingerFor a project I am working on I am currently researching the three Open ID Connect (OIDC) flows:
* Authorization Code Flow is clear
* Implicit Flow is to be avoided due to the potential for leakage of tokens
... and then there is the Hybrid Flow. I understand how it works, i.e. the sequence of steps and their parameters, but no matter where I looked, I could not find a single example for an actual **use case** of the Hybrid Flow. Lots of explanations about how it works, but no mention of the "why".
When would I want to use the Hybrid Flow over the Authorization Code Flow? Or is this an instance of "you'll know it when you'll see it"?