Do you know about OAuth2 Protocol and its different flows?

--

Image Source: https://spanning.com/wp-content/uploads/2020/02/oauth-2-flow-diagram.png

Hello everyone. In this article, we are going to see about the OAuth2 protocol, the terminologies, and the different flows of OAuth2. Toward the end of this article, we will be looking at using OAuth2 along with the OIDC framework for Authentication.

Please read the below article if you want to understand the Single-Sign-on and differences between SAML, OAuth2, and OIDC

What is OAuth2?

OAuth2 (Open Authorization) is an Authorization Protocol that allows a website or an application to access resources hosted by other web applications on behalf of a user. OAuth2 is now the industry standard and it replaced OAuth 1.0 in 2012. Using OAuth2, we can develop applications to access resources on behalf of users without getting their credentials.

OAuth2 uses Access tokens to access the resources on behalf of users. Even though there is no specific format defined for the tokens used, JWT is the most widely used token mechanism with OAuth2. The Access token contains the authorization information to access the…

--

--

Dineshchandgr - A Top writer in Technology
Javarevisited

Principal Software Engineer and Technical Lead focussed on Backend Engineering who likes to upgrade the tech skills and share knowledge to the community