OAUTH-2-0
RFC 6749 delegated authorisation web backbone.
Definition
OAuth 2.0 defines 4 grant types: Authorization Code (web app), Implicit (deprecated), Resource Owner Password (deprecated), Client Credentials (M2M). RFC 6749 October 2012. OpenID Connect adds identity layer. Companion RFCs: PKCE (RFC 7636), Token Introspection (RFC 7662), Token Revocation (RFC 7009).
Origin
IETF OAuth Working Group 2010-2012 ; RFC 6749 published 5 October 2012.
Example in context
A mobile app asks Google to access user contacts via OAuth 2.0 Authorization Code + PKCE.
Related terms
- OAuth 2.1 — BCP update.