OAuth 2 Overview

OAuth is an open standard for authorization.

OAuth provides a method for clients to access server resources on behalf of a resource owner (such as a different client or an end-user). It also provides a process for end-users to authorize third-party access to their server resources without sharing their credentials (typically, a username and password pair), using user-agent redirections.

Most popular use case, is to allow people sign in a website using a social account (Facebook, Google, Twitter, … ) , and then able to access/use some public services of that site (without having to register an account offically).

And also based on that feature, it can be a solution of Single Sign On (SSO) as well .

 

 

 

.

OAuth is a service that is complementary to, and therefore distinct from, OpenID.

OpenID was the original authentication service that inspires OAuth, but OpenID was only for “authentication”, not “authorization” .

OpenID Connect is another attempt of OpenID to recover the mentioned shortcoming. It supports “authentication” and “authorization” quite well, because it’s actually an abstraction layer on top of OAuth 2.0 .

 

 

(to be updated) .

 

.

References

 

OAuth 2.0 – RFC 6749 http://tools.ietf.org/html/rfc6749

OAuth 2 official website – http://oauth.net/2/

 

./.

 

About DucQuoc.wordpress.com

A coder, brother, and player at times...
This entry was posted in Coding, Reading. Bookmark the permalink.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s