OAuth 2.0 Core
- OAuth 2.0 Framework - RFC 6749.
- Bearer Token Usage - RFC 6750
- Threat Model and Security Considerations - RFC 6819
Protocols Built on OAuth 2.0
OAuth 2.0 Extensions
- JSON Web Token
- OAuth Assertions Framework
- SAML2 Bearer Assertion - for integrating with existing identity systems
- JWT Bearer Assertion - for integrating with existing identity systems
- OAuth 2.0 Simplified
- OAuth Resource Center from Eran Hammer-Lahav the specifications editor, including a beginner's guide and tutorials.