Oauth - Role

> Software Security > (Authentication|Access control|Identification) - AuthN > Oauth 2.0 - Authorization framework

1 - About

OAuth defines four roles:

The interaction between this roles is described in the flow.


3 - Example

An end-user (resource owner) can grant a printing service (client) access to her protected photos stored at a photo-sharing service (resource server), without sharing her username and password with the printing service.

Instead, she authenticates directly with a server trusted by the photo-sharing service (authorization server), which issues the printing service delegation-specific credentials (access token).

4 - Documentation / Reference

security/auth/oauth/role.txt · Last modified: 2019/04/30 09:24 by gerardnico