OAuth 2.0
What problem does OAuth2.0 solve ?
OAuth2.0 enables third-party client applications to gain delegated access to an end user’s data and actions without having to share the end user’s credentials to the third-party client application.
Terminology
- Client Application - The third-party application that wants to consume the resources exposed by a resource server or a group of them.
- Resource Server - The server whose resources are being exposed and need to be protected.
- Resource Owner - The owner of a particular resource in the resource server. This is also known as the end user.
- Authorization Server - The server that protects the resources of the resource owner and facilitates the delegation of access to the client application.