My api proxy is secured using OAuth bearer tokens. A token can be minted using the client_credentials as well as the password grant flows. Can I configure the developer portal (smartdocs) for these api calls to support both of these token-minting mechanisms?