A hotel chain wants third-party partners to redeem loyalty points on behalf of members. Which API security model is most appropriate?
-
A
Username-password OAuth flow with shared credentials
-
B
Connected App with OAuth 2.0 JWT Bearer Token flow
-
C
Basic authentication using the admin account
-
D
API key stored in URL query parameters