What is OAuth 2.0?

Created by Laia Güell Paule

Posted 29 September 2023

As part of the "Intro to IAM" series, this article decodes OAuth 2.0, emphasizing its role in authorization, not authentication. Unlike its predecessor, OAuth 1.0, it prioritizes user consent over sharing credentials.

Roles in OAuth 2.0 are vital: The Resource Owner grants access to protected resources. The Client, holding the Access Token, requests access. The Authorization Server authenticates and issues Access Tokens. The Resource Server safeguards resources, validating Access Tokens.

Scopes, defined by the Resource Server, determine the extent of resource access. Tokens may be returned directly or via an Authorization Code for heightened security. Refresh Tokens, securely stored by clients, facilitate token renewal.

Explore more about OAuth 2.0 and identity and access management with this new article!

Learning content

Website link

What is is OAuth 2.0?

Target audience

Digital skills for ICT professionals and other digital experts.

Digital skill level

Advanced

Digital Expert

Geographic scope - Country

Austria

Belgium

Bulgaria

Cyprus

What is OAuth 2.0?

What is OAuth 2.0?

Learning content

You May Also Be Interested In

How to Determine the Correct Size and Type of a Web Server

What is An Ethereum Token: The Ultimate Beginner’s Guide

Open Educational Resources (OER) repository under the ‘Women4IT’ project

IBM SkillsBuild: Empowering Digital Skills for All

Coding @ home Video Tutorials