I've created an "OAuth2 Administration" application which has access to my JAX RS REST services. I've got "Resource Owner Password Credentials" as the allowed authorization types. However unless the user has an Administrator role the o/oauth2/token service returns "Invalid_grant".
Works above when the user has the administrator role. I then remove that role from the user and I receive invalid_grant.