Chapter 1. What is OAuth 2.0 and why should you care?

This chapter covers

  • What OAuth 2.0 is
  • What developers do without OAuth
  • How OAuth works
  • What OAuth 2.0 is not

If you’re a software developer on the web today, chances are you’ve heard of OAuth. It is a security protocol used to protect a large (and growing) number of web APIs all over the world, from large-scale providers such as Facebook and Google to small one-off APIs at startups and inside enterprises of all sizes. It’s used to connect websites to one another and it powers native and mobile applications connecting to cloud services. It’s being used as the security layer for a growing number of standard protocols in a variety of domains, from healthcare to identity, from energy to ...

Get OAuth 2 in Action now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.