OAuth 2.0

OAuth 2.0 logoOAuth 2.0 is the industry-standard protocol for authorization. OAuth 2.0 supersedes the work done on the original OAuth protocol created in 2006. OAuth 2.0 focuses on client developer simplicity while providing specific authorization flows for web applications, desktop applications, mobile phones, and living room devices. This specification and its extensions are being developed within the IETF OAuth Working Group.

Questions, suggestions and protocol changes should be discussed on the mailing list.

OAuth 2.0 Core

🍎 What the Heck is Sign In with Apple? 🍎

Sign In with Apple is based on OAuth 2.0 and OpenID Connect, and provides a privacy-friendly way for users to sign in to websites and apps.

Read More >>

Mobile and Other Devices

Token and Token Management

Related Specs and Extensions

Community Resources

Protocols Built on OAuth 2.0

Code and Services

Legacy

See more information on OAuth 1.0 and 1.0a.